CVE-2024-0345 in Vehicle Booking Systemالمعلومات

الملخص

بحسب MITRE • 09/01/2024

A vulnerability, which was classified as problematic, was found in CodeAstro Vehicle Booking System 1.0. This affects an unknown part of the file usr/usr-register.php of the component User Registration. The manipulation of the argument Full_Name/Last_Name/Address with the input alert(document.cookie) leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-250113 was assigned to this vulnerability.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

VulDB

حجز

09/01/2024

إفشاء

09/01/2024

الاعتدال

تمت الموافقة

إدخال

VDB-250113

CPE

جاهز

CWE

CWE-79 (مؤكد)

استغلال

تحميل

CVSS

6.1 (NVD)

EPSS

0.00079

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2024-0345
NVD	https://nvd.nist.gov/vuln/detail/CVE-2024-0345
CVE Details	https://www.cvedetails.com/cve/CVE-2024-0345/

التالي ▸نظرة عامة ◂ السابق

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!