CVE-2024-4688 | Campcodes Complete Web-Based School Management System 1.0 conversation_history_admin.php conversation_id cross site scripting

Posted by Angelo Barbosa | May 9, 2024 | CVE

A vulnerability classified as problematic was found in Campcodes Complete Web-Based School Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /view/conversation_history_admin.php. The manipulation of the argument conversation_id leads to cross site scripting.

This vulnerability is known as CVE-2024-4688. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-4688 | Campcodes Complete Web-Based School Management System 1.0 conversation_history_admin.php conversation_id cross site scripting

Related Posts

CVE-2024-9237 | Fish and Ships Plugin up to 1.5.9 on WordPress cross site scripting

CVE-2024-25707 | Esri Portal for ArcGIS up to 10.8.1/10.9.1/11.1 String cross site scripting

CVE-2024-34427 | Huseyin Berberoglu WP Favorite Posts Plugin up to 1.6.8 on WordPress cross-site request forgery

CVE-2024-38145 | Microsoft unknown vulnerability