CVE-2024-5437 | SourceCodester Simple Online Bidding System 1.0 index.php save_category name cross site scripting

Posted by Angelo Barbosa | May 28, 2024 | CVE

A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been classified as problematic. Affected is the function save_category of the file /admin/index.php?page=categories. The manipulation of the argument name leads to cross site scripting.

This vulnerability is traded as CVE-2024-5437. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-5437 | SourceCodester Simple Online Bidding System 1.0 index.php save_category name cross site scripting

Related Posts

CVE-2024-4643 | Element Pack Elementor Addons Plugin up to 5.7.1 on WordPress cross site scripting

CVE-2024-27316 | mod_http2 CONTINUATION Frame resource consumption

CVE-2023-44250 | Fortinet FortiOS/FortiProxy up to 7.4.1 HA Request privileges management (FG-IR-23-315)

CVE-2024-28279 | code-projects Computer Book Store 1.0 book.php bookisbn sql injection