CVE-2024-50838 | Kashipara E-Learning Management System Project 1.0 HTTP POST Request department.php d/pi cross site scripting

Posted by Angelo Barbosa | Nov 14, 2024 | CVE

A vulnerability was found in Kashipara E-Learning Management System Project 1.0. It has been classified as problematic. Affected is an unknown function of the file /lms/admin/department.php of the component HTTP POST Request Handler. The manipulation of the argument d/pi leads to cross site scripting.

This vulnerability is traded as CVE-2024-50838. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-50838 | Kashipara E-Learning Management System Project 1.0 HTTP POST Request department.php d/pi cross site scripting

Related Posts

CVE-2024-23351 | Qualcomm Snapdragon up to WSA8845H GPU Register access control

CVE-2024-27440 | Toyoko Inn IT Solution App on iOS/Android certificate validation

CVE-2024-9896 | BBP Core Plugin up to 1.2.5 on WordPress add_query_arg cross site scripting

CVE-2024-8499 | Checkout Field Editor Plugin up to 2.0.3 on WordPress render_review_request_notice cross site scripting