CVE-2024-40487 | Kashipara Live Membership System 1.0 /view_type.php membershipType cross site scripting

Posted by Angelo Barbosa | Aug 8, 2024 | CVE

A vulnerability was found in Kashipara Live Membership System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /view_type.php. The manipulation of the argument membershipType leads to cross site scripting.

This vulnerability is handled as CVE-2024-40487. The attack may be launched remotely. There is no exploit available.

CVE-2024-40487 | Kashipara Live Membership System 1.0 /view_type.php membershipType cross site scripting

Related Posts

CVE-2024-3807 | Porto Plugin up to 7.1.0 on WordPress Post Meta file inclusion

CVE-2024-31386 | Sensible WP Plugin on WordPress cross-site request forgery

CVE-2024-26710 | Linux Kernel up to 6.1.78/6.6.17/6.7.5 KASAN Thread stack-based overflow (4297217bcf1f/4cc31fa07445/b29b16bd836a)

CVE-2024-37115 | Automattic Newspack Blocks Plugin up to 3.0.8 on WordPress information disclosure