CVE-2024-7844 | SourceCodester Online Graduate Tracer System 1.0 add_acc.php name/user/position cross site scripting

Posted by Angelo Barbosa | Aug 15, 2024 | CVE

A vulnerability has been found in SourceCodester Online Graduate Tracer System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /tracking/admin/add_acc.php. The manipulation of the argument name/user/position leads to cross site scripting.

This vulnerability is known as CVE-2024-7844. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-7844 | SourceCodester Online Graduate Tracer System 1.0 add_acc.php name/user/position cross site scripting

Related Posts

CVE-2022-43842 | IBM Aspera Console up to 3.4.2 sql injection (XFDB-239079)

CVE-2024-4337 | Adive Framework 2.0.8 /adive/admin/nav/add cross site scripting

CVE-2022-48723 | Linux Kernel up to 5.10.98/5.15.21/5.16.7 uniphier_spi_probe reference count

CVE-2023-49920 | Apache Airflow up to 2.7.3 GET Request cross-site request forgery