A Stored Cross Site Scripting (XSS) vulnerability was found in "/smsa/add_class_submit.php" in Responsive School Management System v3.2.0, which allows remote attackers to execute arbitrary code via "class_name" parameter field.
Metrics
Affected Vendors & Products
References
History
Thu, 08 Aug 2024 19:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Lopalopa
Lopalopa responsive School Management System |
|
CPEs | cpe:2.3:a:lopalopa:responsive_school_management_system:3.2.0:*:*:*:*:*:*:* | |
Vendors & Products |
Lopalopa
Lopalopa responsive School Management System |
Thu, 08 Aug 2024 16:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A Stored Cross Site Scripting (XSS) vulnerability was found in "/smsa/add_class_submit.php" in Kashipara Responsive School Management System v1.0, which allows remote attackers to execute arbitrary code via "class_name" parameter field. | A Stored Cross Site Scripting (XSS) vulnerability was found in "/smsa/add_class_submit.php" in Responsive School Management System v3.2.0, which allows remote attackers to execute arbitrary code via "class_name" parameter field. |
Wed, 07 Aug 2024 19:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Kashipara
Kashipara responsive School Management System |
|
Weaknesses | CWE-79 | |
CPEs | cpe:2.3:a:kashipara:responsive_school_management_system:1.0:*:*:*:*:*:*:* | |
Vendors & Products |
Kashipara
Kashipara responsive School Management System |
|
Metrics |
cvssV3_1
|
Wed, 07 Aug 2024 18:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A Stored Cross Site Scripting (XSS) vulnerability was found in "/smsa/add_class_submit.php" in Kashipara Responsive School Management System v1.0, which allows remote attackers to execute arbitrary code via "class_name" parameter field. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-08-07T00:00:00
Updated: 2024-08-08T15:52:23.566001
Reserved: 2024-07-18T00:00:00
Link: CVE-2024-41239
Vulnrichment
Updated: 2024-08-07T19:09:46.344Z
NVD
Status : Analyzed
Published: 2024-08-07T19:15:48.093
Modified: 2024-08-08T19:04:43.380
Link: CVE-2024-41239
Redhat
No data.