CVE-2024-6267 | SourceCodester Service Provider Management System 1.0 System Info Page system_info/index.php System Name/System Short Name cross site scripting

Posted by Angelo Barbosa | Jun 22, 2024 | CVE

A vulnerability classified as problematic was found in SourceCodester Service Provider Management System 1.0. Affected by this vulnerability is an unknown functionality of the file system_info/index.php of the component System Info Page. The manipulation of the argument System Name/System Short Name leads to cross site scripting.

This vulnerability is known as CVE-2024-6267. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-6267 | SourceCodester Service Provider Management System 1.0 System Info Page system_info/index.php System Name/System Short Name cross site scripting

Related Posts

CVE-2023-41603 | D-Link R15 prior 1.08.02 IPv6 access control

CVE-2024-5238 | Campcodes Complete Web-Based School Management System 1.0 timetable_insert_form.php grade sql injection

CVE-2024-25580 | qtbase prior 6.6.2 KTX Image buffer overflow

CVE-2024-24804 | websoudan MW WP Form Plugin up to 5.0.6 on WordPress cross site scripting