CVE-2024-1024 | SourceCodester Facebook News Feed Like 1.0 New Account First Name/Last Name cross site scripting

Posted by Angelo Barbosa | Jan 29, 2024 | CVE

A vulnerability has been found in SourceCodester Facebook News Feed Like 1.0 and classified as problematic. This vulnerability affects unknown code of the component New Account Handler. The manipulation of the argument First Name/Last Name with the input <script>alert(1)</script> leads to cross site scripting.

This vulnerability was named CVE-2024-1024. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-1024 | SourceCodester Facebook News Feed Like 1.0 New Account First Name/Last Name cross site scripting

Related Posts

CVE-2024-31800 | GNCC GC2 Indoor Security Camera improper authentication

CVE-2024-31220 | LizardByte Sunshine 0.16.x/0.17.x node_modules Endpoint path traversal (GHSA-6rg7-7m3w-w5wc)

CVE-2024-6469 | playSMS 1.4.3 Template index.php IP address injection

CVE-2024-32563 | VikBooking Hotel Booking Engine & PMS Plugin up to 1.6.7 on WordPress cross site scripting