VDB-263599 | Campcodes Complete Web-Based School Management System 1.0 /view/find_friends.php my_type cross site scripting

Posted by Angelo Barbosa | May 8, 2024 | CVE

A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /view/find_friends.php. The manipulation of the argument my_type leads to cross site scripting.

The attack can be launched remotely. Furthermore, there is an exploit available.

VDB-263599 | Campcodes Complete Web-Based School Management System 1.0 /view/find_friends.php my_type cross site scripting

Related Posts

CVE-2024-4736 | Campcodes Legal Case Management System 1.0 /admin/tax name cross site scripting

CVE-2024-32492 | Znuny up to 7.0.16 Ticket Detail View cross site scripting

CVE-2024-6250 | parisneo lollms-webui up to 9.6 lollms_advanced.py open_file absolute path traversal

CVE-2024-46702 | Linux Kernel up to 5.10.224/5.15.165/6.1.106/6.6.47/6.10.6 thunderbolt tb_disconnect_xdomain_paths Privilege Escalation