CVE-2024-34401 | Savsoft Savsoft Quiz 6.0 quiz_name cross site scripting (Exploit 51988 / EDB-51988)

Inserito da Angelo Barbosa | Mag 3, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Savsoft Savsoft Quiz 6.0. Affected by this issue is some unknown functionality of the file index.php/quiz/insert_quiz/. The manipulation of the argument quiz_name leads to cross site scripting.

This vulnerability is handled as CVE-2024-34401. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-34401 | Savsoft Savsoft Quiz 6.0 quiz_name cross site scripting (Exploit 51988 / EDB-51988)

Post correlati

CVE-2024-2399 | Premium Addons for Elementor Pro Plugin up to 4.10.23 on WordPress cross site scripting

CVE-2024-2003 | ESET NOD32 Antivirus prior 1610 privileges management

CVE-2024-0772 | Nsasoft ShareAlarmPro 2.1.4 Registration Name/Key memory corruption

CVE-2024-42991 | MCMS 5.4.1 unrestricted upload