CVE-2024-1834 | SourceCodester Simple Student Attendance System 1.0 ?page=attendance&class_id=1 class_date cross site scripting

Posted by Angelo Barbosa | Feb 23, 2024 | CVE

A vulnerability was found in SourceCodester Simple Student Attendance System 1.0. It has been classified as problematic. This affects an unknown part of the file ?page=attendance&class_id=1. The manipulation of the argument class_date with the input 2024-02-23%22%3E%3Cscript%3Ealert(1)%3C/script%3E leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-1834. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-1834 | SourceCodester Simple Student Attendance System 1.0 ?page=attendance&class_id=1 class_date cross site scripting

Related Posts

CVE-2024-3093 | khl32 Font Farsi Plugin up to 1.6.6 on WordPress Setting cross site scripting

CVE-2023-5611 | Seraphinite Accelerator Plugin up to 2.20.31 on WordPress Setting cross-site request forgery

CVE-2023-3742 | Google Chrome prior 114.0.5735.90 on ChromeOS Device Policy Enforcement access control

CVE-2024-20757 | Adobe Bridge out-of-bounds (APSB24-15)