CVE-2024-1010 | SourceCodester Employee Management System 1.0 edit-profile.php cross site scripting

Posted by Angelo Barbosa | Jan 29, 2024 | CVE

A vulnerability classified as problematic has been found in SourceCodester Employee Management System 1.0. This affects an unknown part of the file edit-profile.php. The manipulation of the argument fullname/phone/date of birth/address/date of appointment leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-1010. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-1010 | SourceCodester Employee Management System 1.0 edit-profile.php cross site scripting

Related Posts

CVE-2024-36303 | Trend Micro Apex One Local Privilege Escalation

CVE-2024-4541 | Custom Product List Table Plugin up to 3.0.0 on WordPress cross-site request forgery

CVE-2024-8339 | SourceCodester Electric Billing Management System 1.0 Connection Code /?page=tracks code sql injection

CVE-2024-36442 | Swissphone DiCal-RED 2.cgi cgi-bin/fdmcgiwebv2.cgi improper authentication (SYSS-2024-039)