CVE-2024-9320 | SourceCodester Online Timesheet App 1.0 Add Timesheet Form add-timesheet.php day/task cross site scripting

Posted by Angelo Barbosa | Sep 28, 2024 | CVE

A vulnerability has been found in SourceCodester Online Timesheet App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /endpoint/add-timesheet.php of the component Add Timesheet Form. The manipulation of the argument day/task leads to cross site scripting.

This vulnerability was named CVE-2024-9320. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-9320 | SourceCodester Online Timesheet App 1.0 Add Timesheet Form add-timesheet.php day/task cross site scripting

Related Posts

CVE-2023-6254 | OTRS up to 8.0.37 AgentInterface/ExternalInterface insufficiently protected credentials

CVE-2023-47844 | Lim Kai Yang Grab & Save Plugin up to 1.0.4 on WordPress cross site scripting

CVE-2024-5915 | Palo Alto GlobalProtect App prior 6.1.5/6.2.4/6.3.1 on Windows permission assignment

CVE-2024-35774 | D’arteweb DImage 360 Plugin up to 2.0 on WordPress cross site scripting