CVE-2024-2270 | keerti1924 Online-Book-Store-Website 1.0 /signup.php name cross site scripting

Posted by Angelo Barbosa | Mar 7, 2024 | CVE

A vulnerability was found in keerti1924 Online-Book-Store-Website 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /signup.php. The manipulation of the argument name leads to cross site scripting.

This vulnerability is handled as CVE-2024-2270. The attack may be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-2270 | keerti1924 Online-Book-Store-Website 1.0 /signup.php name cross site scripting

Related Posts

CVE-2024-6754 | Social Auto Poster Plugin up to 5.3.14 on WordPress Post Meta wpw_auto_poster_update_tweet_template authorization

CVE-2024-24694 | Zoom Desktop Client prior 5.17.10 on Windows Installer Local Privilege Escalation (ZSB-24011)

CVE-2024-23557 | HCL Connections 7.0/8.0 information disclosure (KB0112488)

CVE-2024-37151 | OISF Suricata up to 6.0.19/7.0.5 af-packet unusual condition (ID 7041)