CVE-2024-8605 | code-projects Inventory Management 1.0 Registration Form /view/registration.php cross site scripting

Inserito da Angelo Barbosa | Set 9, 2024 | CVE

A vulnerability classified as problematic was found in code-projects Inventory Management 1.0. This vulnerability affects unknown code of the file /view/registration.php of the component Registration Form. The manipulation with the input <script>alert(1)</script> leads to cross site scripting.

This vulnerability was named CVE-2024-8605. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-8605 | code-projects Inventory Management 1.0 Registration Form /view/registration.php cross site scripting

Post correlati

CVE-2024-47067 | alist up to 3.28.x /i/:link_name cross site scripting (GHSL-2023-220)

CVE-2024-47328 | FunnelKit Automation by Autonami Plugin up to 3.1.2 on WordPress sql injection

CVE-2024-51628 | EzyOnlineBookings Online Booking System Widget Plugin up to 1.3 on WordPress cross site scripting

CVE-2023-48702 | Jellyfin up to 10.8.12 Path ProcessStartInfo command injection (GHSA-rr9h-w522-cvmr)