CVE-2024-4645 | SourceCodester Prison Management System 1.0 changepassword.php cross site scripting

Posted by Angelo Barbosa | May 8, 2024 | CVE

A vulnerability was found in SourceCodester Prison Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /Admin/changepassword.php. The manipulation of the argument txtold_password/txtnew_password/txtconfirm_password leads to cross site scripting.

The identification of this vulnerability is CVE-2024-4645. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-4645 | SourceCodester Prison Management System 1.0 changepassword.php cross site scripting

Related Posts

CVE-2024-25520 | RuvarOA 6.01/12.01 sys_blogtemplate_new.aspx id sql injection

CVE-2024-21170 | Oracle MySQL Server up to 8.4.0 Connector Python denial of service

CVE-2024-22520 | Dronetag Drone Scanner 1.5.2 Data Packet unknown vulnerability

CVE-2023-3758 | sssd GPO Policy race condition