CVE-2024-4074 | Kashipara Online Furniture Shopping Ecommerce Website 1.0 prodInfo.php prodId cross site scripting

Posted by Angelo Barbosa | Apr 23, 2024 | CVE

A vulnerability was found in Kashipara Online Furniture Shopping Ecommerce Website 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file prodInfo.php. The manipulation of the argument prodId leads to cross site scripting.

This vulnerability is handled as CVE-2024-4074. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-4074 | Kashipara Online Furniture Shopping Ecommerce Website 1.0 prodInfo.php prodId cross site scripting

Related Posts

CVE-2024-1364 | Elementor Website Builder Pro Plugin up to 3.20.1 on WordPress cross site scripting

CVE-2024-2159 | Social Sharing Plugin up to 3.3.60 on WordPress Shortcode Attribute cross site scripting

CVE-2024-27279 | Appleple A-Blog CMS path traversal

CVE-2024-39521 | Juniper Networks Junos OS Evolved CLI os command injection (JSA82975)