CVE-2024-50838 | Kashipara E-Learning Management System Project 1.0 HTTP POST Request department.php d/pi cross site scripting

Posted by Angelo Barbosa | Nov 14, 2024 | CVE

A vulnerability was found in Kashipara E-Learning Management System Project 1.0. It has been classified as problematic. Affected is an unknown function of the file /lms/admin/department.php of the component HTTP POST Request Handler. The manipulation of the argument d/pi leads to cross site scripting.

This vulnerability is traded as CVE-2024-50838. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-50838 | Kashipara E-Learning Management System Project 1.0 HTTP POST Request department.php d/pi cross site scripting

Related Posts

CVE-2024-1756 | WooCommerce Customers Manager Plugin up to 29.7 on WordPress Ajax Action cross-site request forgery

CVE-2024-51707 | Webcodin WP Visual Adverts Plugin up to 2.3.0 on WordPress cross site scripting

CVE-2024-47046 | Siemens Simcenter Nastran 2406 BDF File memory corruption (ssa-852501)

CVE-2024-0530 | CXBSoft Post-Office up to 1.0 HTTP POST Request /apps/reg_go.php username_reg sql injection