CVE-2024-4072 | Kashipara Online Furniture Shopping Ecommerce Website 1.0 search.php txtSearch cross site scripting

Posted by Angelo Barbosa | Apr 23, 2024 | CVE

A vulnerability was found in Kashipara Online Furniture Shopping Ecommerce Website 1.0. It has been classified as problematic. Affected is an unknown function of the file search.php. The manipulation of the argument txtSearch leads to cross site scripting.

This vulnerability is traded as CVE-2024-4072. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-4072 | Kashipara Online Furniture Shopping Ecommerce Website 1.0 search.php txtSearch cross site scripting

Related Posts

CVE-2024-5553 | Premium Addons for Elementor Plugin up to 4.10.33 on WordPress cross site scripting

CVE-2024-6252 | Zorlan SkyCaiji up to 2.8 Task onerror cross site scripting

CVE-2024-33305 | SourceCodester Laboratory Management System 1.0 Create User Middle Name cross site scripting

CVE-2024-43413 | Xibo CMS up to 4.0.x Data Entry Page cross site scripting (GHSA-pfxp-vxh7-2h9f)