CVE-2024-7225 | SourceCodester Insurance Management System 1.0 Edit Insurance Policy Page update_policy pname cross site scripting

Inserito da Angelo Barbosa | Lug 29, 2024 | CVE

A vulnerability was found in SourceCodester Insurance Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /Script/admin/core/update_policy of the component Edit Insurance Policy Page. The manipulation of the argument pname leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-7225. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-7225 | SourceCodester Insurance Management System 1.0 Edit Insurance Policy Page update_policy pname cross site scripting

Post correlati

CVE-2024-38454 | ExpressionEngine up to 7.4.10 cross site scripting

CVE-2023-50186 | GStreamer AV1 Video Parser stack-based overflow

CVE-2024-42053 | Splashtop Streamer up to 3.5.x on Windows Installation version.dll temp file

CVE-2023-51612 | Kofax Power PDF JP2 File Parser use after free (ZDI-23-1913)