CVE-2024-9300 | SourceCodester Online Railway Reservation System 1.0 Message Us Form contact_us.php fullname/email/message cross site scripting

Posted by Angelo Barbosa | Sep 27, 2024 | CVE

A vulnerability classified as problematic was found in SourceCodester Online Railway Reservation System 1.0. This vulnerability affects unknown code of the file contact_us.php of the component Message Us Form. The manipulation of the argument fullname/email/message leads to cross site scripting.

This vulnerability was named CVE-2024-9300. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-9300 | SourceCodester Online Railway Reservation System 1.0 Message Us Form contact_us.php fullname/email/message cross site scripting

Related Posts

CVE-2024-5044 | Emlog Pro 2.3.4 Cookie AuthCookie improper authentication

CVE-2024-5503 | WP Blog Post Layouts Plugin up to 1.1.3 on WordPress file inclusion

CVE-2023-43628 | GPSd 3.25.1~dev NTRIP Stream Parser integer underflow (TALOS-2023-1860)

CVE-2024-5901 | SiteOrigin Widgets Bundle up to 1.62.2 on WordPress Image Grid Widget cross site scripting