CVE-2024-4652 | Campcodes Complete Web-Based School Management System 1.0 /view/show_teacher2.php month cross site scripting

Posted by Angelo Barbosa | May 8, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Campcodes Complete Web-Based School Management System 1.0. Affected is an unknown function of the file /view/show_teacher2.php. The manipulation of the argument month leads to cross site scripting.

This vulnerability is traded as CVE-2024-4652. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-4652 | Campcodes Complete Web-Based School Management System 1.0 /view/show_teacher2.php month cross site scripting

Related Posts

CVE-2024-35151 | IBM OpenPages with Watson 8.3/9.0 API authentication bypass

CVE-2021-47109 | Linux Kernel up to 5.4.124/5.10.42/5.12.9 Neighbour resource consumption

CVE-2024-29415 | ip Package up to 2.0.1/012.1.2.3/127.0.0.1/127.1 on Node.js server-side request forgery (ID 150)

CVE-2023-7080 | Cloudflare wrangler prior 2.20.2/3.19.0 Workers Sandbox privileges management