CVE-2024-8208 | nafisulbari/itsourcecode Insurance Management System 1.0 editClient.php AGENT ID cross site scripting

Posted by Angelo Barbosa | Aug 27, 2024 | CVE

A vulnerability has been found in nafisulbari/itsourcecode Insurance Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file editClient.php. The manipulation of the argument AGENT ID leads to cross site scripting.

This vulnerability is known as CVE-2024-8208. The attack can be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-8208 | nafisulbari/itsourcecode Insurance Management System 1.0 editClient.php AGENT ID cross site scripting

Related Posts

CVE-2024-6730 | Nanjing Xingyuantu Technology SparkShop up to 1.1.6 /api/Common/uploadFile file unrestricted upload

CVE-2024-34244 | libmodbus 3.1.10 modbus_write_bits out-of-bounds

CVE-2024-10747 | PHPGurukul Online Shopping Portal 2.0 dom_data_th.php scripts cross site scripting

CVE-2024-50825 | Kashipara E-Learning Management System Project 1.0 /admin/school_year.php school_year sql injection