Vulnerability CVE-2024-4528


Published: 2024-05-06

Description:
A vulnerability was found in SourceCodester Prison Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /Admin/user-record.php. The manipulation of the argument txtfullname leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-263131.

Type:

CWE-79

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://vuldb.com/?id.263131
https://vuldb.com/?ctiid.263131
https://vuldb.com/?submit.329780
https://github.com/yylmm/CVE/blob/main/Prison%20Management%20System/xss2.md

Copyright 2026, cxsecurity.com

 

Back to Top