CVE-2024-2075 | SourceCodester Daily Habit Tracker 1.0 update-tracker.php day cross site scripting

Posted by Angelo Barbosa | Mar 1, 2024 | CVE

A vulnerability was found in SourceCodester Daily Habit Tracker 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /endpoint/update-tracker.php. The manipulation of the argument day leads to cross site scripting.

This vulnerability is known as CVE-2024-2075. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-2075 | SourceCodester Daily Habit Tracker 1.0 update-tracker.php day cross site scripting

Related Posts

CVE-2024-44844 | DrayTek Vigor3900 1.5.1.6 run_command name command injection

CVE-2024-21201 | Oracle MySQL Server up to 8.0.39/8.4.2/9.0.1 Optimizer denial of service

CVE-2021-47227 | Linux Kernel up to 5.10.45/5.12.12 __fpu__restore_sig initialization (076f732b16a5/ec25ea1f3f05/484cea4f362e)

CVE-2024-47211 | OpenStack Ironic up to 21.4.3/23.0.2/24.1.2/26.0.x URL image_source stack-based overflow

CVE-2021-47227 | Linux Kernel up to 5.10.45/5.12.12 fpurestore_sig initialization (076f732b16a5/ec25ea1f3f05/484cea4f362e)