VDB-263595 | Campcodes Complete Web-Based School Management System 1.0 show_friend_request.php my_index cross site scripting

Posted by Angelo Barbosa | May 8, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Campcodes Complete Web-Based School Management System 1.0. This affects an unknown part of the file /view/show_friend_request.php. The manipulation of the argument my_index leads to cross site scripting.

It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

VDB-263595 | Campcodes Complete Web-Based School Management System 1.0 show_friend_request.php my_index cross site scripting

Related Posts

CVE-2024-33401 | DedeCMS 5.7.113 mnum cross site scripting

CVE-2024-25959 | Dell PowerScale OneFS up to 9.4.0.16/9.5.0.7/9.7.0.0/9.7.0.1 log file (dsa-2024-115)

CVE-2024-2771 | Contact Form Plugin up to 5.1.16 on WordPress Setting authorization

CVE-2024-0494 | Kashipara Billing Software 1.0 HTTP POST Request material_bill.php itemtypeid sql injection