CVE-2024-5385 | oretnom23 Online Car Wash Booking System 1.0 /admin/ First Name/Last Name cross site scripting

Inserito da Angelo Barbosa | Mag 25, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in oretnom23 Online Car Wash Booking System 1.0. This issue affects some unknown processing of the file /admin/?page=user/list. The manipulation of the argument First Name/Last Name with the input <script>confirm (document.cookie)</script> leads to cross site scripting.

The identification of this vulnerability is CVE-2024-5385. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-5385 | oretnom23 Online Car Wash Booking System 1.0 /admin/ First Name/Last Name cross site scripting

Post correlati

CVE-2023-6310 | SourceCodester Loan Management System 1.0 deleteBorrower.php delete_borrower borrower_id sql injection

CVE-2024-35727 | actpro Extra Product Options for WooCommerce Plugin up to 3.0.6 on WordPress authorization

CVE-2024-24736 | YahooPOPs 1.6 POP3 Service denial of service (ID 176784)

CVE-2023-47065 | Adobe Experience Manager up to 6.5.18 cross site scripting (apsb23-72)