CVE-2024-3443 | SourceCodester Prison Management System 1.0 apply_leave.php txtstart_date/txtend_date cross site scripting

Inserito da Angelo Barbosa | Apr 8, 2024 | CVE

A vulnerability classified as problematic was found in SourceCodester Prison Management System 1.0. This vulnerability affects unknown code of the file /Employee/apply_leave.php. The manipulation of the argument txtstart_date/txtend_date leads to cross site scripting.

This vulnerability was named CVE-2024-3443. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-3443 | SourceCodester Prison Management System 1.0 apply_leave.php txtstart_date/txtend_date cross site scripting

Post correlati

CVE-2023-6994 | List Category Posts Plugin up to 0.89.3 on WordPress Shortcode cross site scripting

CVE-2024-22938 | BossCMS 1.3.0 admin.class.php init permission

CVE-2023-50290 | Apache Solr up to 9.2.x Metrics API information disclosure

CVE-2023-51392 | Silabs Ember ZNet SDK up to 7.3.x on 32-bit ARM Software AES-CCM risky encryption