CVE-2024-1700 in PHP-MYSQL-User-Login-SystemИнформация

Сводка

по MITRE • 21.02.2024

A vulnerability, which was classified as problematic, was found in keerti1924 PHP-MYSQL-User-Login-System 1.0. Affected is an unknown function of the file /signup.php. The manipulation of the argument username with the input <script>alert("xss")</script> leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-254388. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Ответственный

VulDB

Раскрытие

21.02.2024

Модерация

принято

Вход

VDB-254388

Эксплойт

Скачать

EPSS

0.00584

KEV

Нет

Деятельности

Очень низкий

Источники

Want to stay up to date on a daily basis?

Enable the mail alert feature now!