CVE-2024-51031

CVSS 5.4 MEDIUMEPSS 0.4%CWE-79

A Cross-site Scripting (XSS) vulnerability in manage_account.php in Sourcecodester Cab Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "First Name," "Middle Name," and "Last Name" fields.

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Productos afectados

n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://github.com/vighneshnair7/CVE-2024-51031 https://www.sourcecodester.com/php/15180/cab-management-system-phpoop-free-source-code.html