Cross Site Scripting Vulnerability in SourceCodester eLearning System 1.0
CVE-2024-3321

4.8MEDIUM

Key Information:

Vendor: SourceCodester
Status: Elearning System
Vendor: CVE Published:; 5 April 2024

Summary

A vulnerability classified as problematic has been found in SourceCodester eLearning System 1.0. This affects an unknown part of the component Maintenance Module. The manipulation of the argument Subject Code/Description leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-259389 was assigned to this vulnerability.

References

https://vuldb.com/?id.259389

https://vuldb.com/?ctiid.259389

https://vuldb.com/?submit.310122

CVSS V3.1

Score:

4.8

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Apr 5, 2024