Arbitrary Code Execution via GET Request in Simple Student Attendance System
CVE-2024-25551

Currently unrated

Key Information:

Vendor

sourcecodester
Status
Simple Student Attendance System
Vendor
CVE Published:
3 March 2024

What is CVE-2024-25551?

Cross Site Scripting (XSS) vulnerability in sourcecodester Simple Student Attendance System v1.0 allows attackers to execute arbitrary code via crafted GET request to web application URL.

References

https://medium.com/%40jose.inaciot/my-first-cve-cve-2024-...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.