CVE-2024-11742 | SourceCodester Best House Rental Management System 1.0 ajax.php?action=save_tenant lastname/firstname/middlename cross site scripting

Posted by Angelo Barbosa | Nov 26, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in SourceCodester Best House Rental Management System 1.0. This issue affects some unknown processing of the file /rental/ajax.php?action=save_tenant. The manipulation of the argument lastname/firstname/middlename leads to cross site scripting.

The identification of this vulnerability is CVE-2024-11742. The attack may be initiated remotely. Furthermore, there is an exploit available.

Other parameters might be affected as well.

CVE-2024-11742 | SourceCodester Best House Rental Management System 1.0 ajax.php?action=save_tenant lastname/firstname/middlename cross site scripting

Related Posts

CVE-2024-37828 | Vermeg Agile Reporter 23.2.1 Broadcast Message Module cross site scripting

CVE-2023-6882 | Simple Membership Plugin up to 4.3.8 on WordPress Environment Mode cross site scripting

CVE-2023-51074 | json-path 2.8.0 Criteria.parse stack-based overflow (Issue 973)

CVE-2024-8801 | thehappymonster Happy Addons for Elementor Plugin up to 3.12.2 on WordPress Content Switcher Widget information disclosure