A vulnerability was found in SourceCodester Simple Student Attendance System 1.0. It has been classified as problematic. This affects an unknown part of the file ?page=attendance&class_id=1. The manipulation of the argument class_date with the input 2024-02-23%22%3E%3Cscript%3Ealert(1)%3C/script%3E leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-254625 was assigned to this vulnerability.
Metrics
Affected Vendors & Products
References
History
Fri, 06 Dec 2024 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Oretnom23
Oretnom23 simple Student Attendance System |
|
CPEs | cpe:2.3:a:oretnom23:simple_student_attendance_system:1.0:*:*:*:*:*:*:* | |
Vendors & Products |
Oretnom23
Oretnom23 simple Student Attendance System |
MITRE
Status: PUBLISHED
Assigner: VulDB
Published: 2024-02-23T20:00:11.202Z
Updated: 2024-08-01T18:56:21.075Z
Reserved: 2024-02-23T11:06:35.959Z
Link: CVE-2024-1834
Vulnrichment
Updated: 2024-08-01T18:56:21.075Z
NVD
Status : Analyzed
Published: 2024-02-23T20:15:52.537
Modified: 2024-12-06T19:59:24.463
Link: CVE-2024-1834
Redhat
No data.