CVE-2024-4073 | Kashipara Online Furniture Shopping Ecommerce Website 1.0 prodList.php prodType cross site scripting

Posted by Angelo Barbosa | Apr 23, 2024 | CVE

A vulnerability was found in Kashipara Online Furniture Shopping Ecommerce Website 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file prodList.php. The manipulation of the argument prodType leads to cross site scripting.

This vulnerability is known as CVE-2024-4073. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-4073 | Kashipara Online Furniture Shopping Ecommerce Website 1.0 prodList.php prodType cross site scripting

Related Posts

CVE-2024-43640 | Microsoft Windows 10 21H2/10 22H2/11 22H2/11 23H2/Server 2022 Kernel-Mode Driver double free

CVE-2024-33786 | Zhongcheng Kexin Ticketing Management Platform 20.04 File unrestricted upload

CVE-2024-0560 | upstream insufficient permissions or privileges

CVE-2023-49838 | KlbTheme on WordPress cross-site request forgery