CVE-2024-3433 | PuneethReddyHC Event Management 1.0 /backend/register.php event_id/full_name/email/mobile/college/branch cross site scripting (ID 177841)

Inserito da Angelo Barbosa | Apr 7, 2024 | CVE

A vulnerability classified as problematic has been found in PuneethReddyHC Event Management 1.0. Affected is an unknown function of the file /backend/register.php. The manipulation of the argument event_id/full_name/email/mobile/college/branch leads to cross site scripting.

This vulnerability is traded as CVE-2024-3433. It is possible to launch the attack remotely. There is no exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-3433 | PuneethReddyHC Event Management 1.0 /backend/register.php event_id/full_name/email/mobile/college/branch cross site scripting (ID 177841)

Post correlati

CVE-2024-24590 | Allegro AI ClearML up to 0.17.0 Artifact deserialization

CVE-2023-47858 | Mattermost up to 8.1.6/9.0.4/9.1.3/9.2.2 Archived Public Channel deleted access control

CVE-2024-6522 | Modern Events Calendar Plugin up to 7.12.1 on WordPress server-side request forgery

CVE-2021-47530 | Linux Kernel up to 5.15.6 wait_fence memory leak (4c3cdbf25403/ea0006d390a2)