CVE-2024-1822 | PHPGurukul Tourism Management System 1.0 user-bookings.php Full Name cross site scripting

Inserito da Angelo Barbosa | Feb 23, 2024 | CVE

A vulnerability classified as problematic has been found in PHPGurukul Tourism Management System 1.0. Affected is an unknown function of the file user-bookings.php. The manipulation of the argument Full Name leads to cross site scripting.

This vulnerability is traded as CVE-2024-1822. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-1822 | PHPGurukul Tourism Management System 1.0 user-bookings.php Full Name cross site scripting

Post correlati

CVE-2022-47037 | Siklu TG Terragraph up to 2.1.0 GetCredentials random values

CVE-2024-27889 | Arista Edge Threat Management up to 17.0 Report Application sql injection

CVE-2024-6168 | aprokopenko Just Custom Fields Plugin up to 3.3.2 on WordPress cross-site request forgery

CVE-2024-32570 | Archetyped Cornerstone Plugin up to 0.8.0 on WordPress cross site scripting