CVE-2024-1196 | SourceCodester Testimonial Page Manager 1.0 HTTP POST Request add-testimonial.php name/description/testimony cross site scripting

Posted by Angelo Barbosa | Feb 2, 2024 | CVE

A vulnerability classified as problematic was found in SourceCodester Testimonial Page Manager 1.0. This vulnerability affects unknown code of the file add-testimonial.php of the component HTTP POST Request Handler. The manipulation of the argument name/description/testimony leads to cross site scripting.

This vulnerability was named CVE-2024-1196. The attack can be initiated remotely. There is no exploit available.

CVE-2024-1196 | SourceCodester Testimonial Page Manager 1.0 HTTP POST Request add-testimonial.php name/description/testimony cross site scripting

Related Posts

CVE-2024-8161 | ATISolutions CIGESv2 up to 2.15.4 ajaxServiciosCentro.php idCentro sql injection

CVE-2023-6656 | DeepFaceLab pretrained DF.wf.288res.384.92.72.22 DFLIMG/DFLJPG.py deserialization

CVE-2024-4899 | SEOPress Plugin up to 7.7 on WordPress Post Setting cross site scripting

CVE-2023-51664 | tj-actions changed-files up to 40.x Filename command injection (GHSA-mcph-m25j-8j63)