Vulnerability CVE-2024-10197


Published: 2024-10-21

Description:
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file /manage_supplier.php of the component Manage Supplier Page. The manipulation of the argument address leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

Type:

CWE-79

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://vuldb.com/?id.281022
https://vuldb.com/?ctiid.281022
https://vuldb.com/?submit.426884
https://gist.github.com/higordiego/bc051be4a8c6b6641578cad533742aab
https://code-projects.org/

Copyright 2024, cxsecurity.com

 

Back to Top