CVE-2024-7678 | SourceCodester Car Driving School Management System 1.0 Master.php name/description/training_duration cross site scripting

Posted by Angelo Barbosa | Aug 10, 2024 | CVE

A vulnerability was found in SourceCodester Car Driving School Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /classes/Master.php?f=save_package. The manipulation of the argument name/description/training_duration leads to cross site scripting.

This vulnerability is handled as CVE-2024-7678. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-7678 | SourceCodester Car Driving School Management System 1.0 Master.php name/description/training_duration cross site scripting

Related Posts

CVE-2024-35671 | Minoji MJ Update History Plugin up to 1.0.4 on WordPress authorization

CVE-2024-25917 | CodeRevolution WP Setup Wizard Plugin up to 1.0.8.1 on WordPress information disclosure

CVE-2024-25149 | Liferay Portal/DXP authorization

CVE-2024-7573 | Relevanssi Live Ajax Search Plugin up to 2.4 on WordPress WP_Query argument injection