CVE-2024-4512 | SourceCodester Prison Management System 1.0 edit-profile.php cross site scripting

Posted by Angelo Barbosa | May 5, 2024 | CVE

A vulnerability classified as problematic was found in SourceCodester Prison Management System 1.0. This vulnerability affects unknown code of the file /Employee/edit-profile.php. The manipulation of the argument txtfullname/txtdob/txtaddress/txtqualification/cmddept/cmdemployeetype/txtappointment leads to cross site scripting.

This vulnerability was named CVE-2024-4512. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-4512 | SourceCodester Prison Management System 1.0 edit-profile.php cross site scripting

Related Posts

CVE-2024-38021 | Microsoft unknown vulnerability

CVE-2022-23089 | FreeBSD proc_getargv out-of-bounds

CVE-2019-25159 | mpedraza2020 Intranet del Monterroso up to 4.50.0 config/cargos.php dni_profe sql injection

CVE-2024-41019 | Linux Kernel up to 5.15.163/6.1.101/6.6.42/6.9.11/6.10.1 ntfs3 out-of-bounds