CVE-2024-4073 | Kashipara Online Furniture Shopping Ecommerce Website 1.0 prodList.php prodType cross site scripting

Posted by Angelo Barbosa | Apr 23, 2024 | CVE

A vulnerability was found in Kashipara Online Furniture Shopping Ecommerce Website 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file prodList.php. The manipulation of the argument prodType leads to cross site scripting.

This vulnerability is known as CVE-2024-4073. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-4073 | Kashipara Online Furniture Shopping Ecommerce Website 1.0 prodList.php prodType cross site scripting

Related Posts

CVE-2024-0317 | FireEye EX 9.0.3.936727 type/s_f_name cross site scripting

CVE-2023-49855 | Binary Carpenter BC Menu Bar Cart Icon for WooCommerce Plugin up to 1.49.3 on WordPress cross-site request forgery

CVE-2024-38375 | fastly js-compute-runtime up to 3.16.0 use after free (GHSA-mp3g-vpm9-9vqv)

CVE-2024-6963 | Tenda O3 1.0.0.10 formexeCommand cmdinput stack-based overflow