Cross-Site Scripting Vulnerability in Pharmacy Management System 1.0
CVE-2024-10197

4.8MEDIUM

Key Information:

Vendor
code-projects
Status
Pharmacy Management System
Vendor
CVE Published:
21 October 2024

Summary

A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file /manage_supplier.php of the component Manage Supplier Page. The manipulation of the argument address leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

References

https://vuldb.com/?id.281022
https://vuldb.com/?ctiid.281022
https://vuldb.com/?submit.426884

CVSS V3.1

Score:
4.8
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

.
CVE-2024-10197 : Cross-Site Scripting Vulnerability in Pharmacy Management System 1.0 | SecurityVulnerability.io