CVE-2024-4650 | Campcodes Complete Web-Based School Management System 1.0 student_due_payment.php due_month cross site scripting

Inserito da Angelo Barbosa | Mag 8, 2024 | CVE

A vulnerability classified as problematic was found in Campcodes Complete Web-Based School Management System 1.0. This vulnerability affects unknown code of the file /view/student_due_payment.php. The manipulation of the argument due_month leads to cross site scripting.

This vulnerability was named CVE-2024-4650. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-4650 | Campcodes Complete Web-Based School Management System 1.0 student_due_payment.php due_month cross site scripting

Post correlati

CVE-2023-31289 | Pexip Infinity up to 31.1 Signalling denial of service

CVE-2024-0997 | Totolink N200RE 9.3.5u.6139_B20201216 /cgi-bin/cstecgi.cgi setOpModeCfg pppoeUser stack-based overflow

CVE-2024-1125 | EventPrime Plugin up to 3.4.3 on WordPress Post authorization

CVE-2024-10438 | Sunnet eHRD CTMS up to 10.13 authentication bypass