Reflected Cross Site Scripting (XSS) Vulnerability in Kashipara Hotel Management System v1.0
CVE-2024-42769

6.1MEDIUM

Key Information:

Vendor

Kashipara Hotel Management System

Status
Hotel Management System
Vendor
CVE Published:
22 August 2024

What is CVE-2024-42769?

A Reflected Cross Site Scripting (XSS) vulnerability was found in "/core/signup_user.php " of Kashipara Hotel Management System v1.0, which allows remote attackers to execute arbitrary code via "user_fname" and "user_lname" parameters.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://www.kashipara.com/
https://github.com/takekaramey/CVE_Writeup/blob/main/Kash...

CVSS V3.1

Score:
6.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

JSON
.