Cross-Site Scripting Vulnerability in PHPGurukul Dairy Farm Shop Management System
CVE-2024-46241

Currently unrated

Key Information:

Vendor: PHPGurukul
Status: Dairy Farm Shop Management System
Vendor: CVE Published:; 23 September 2024

Summary

The PHPGurukul Dairy Farm Shop Management System v1.1 is susceptible to Cross-Site Scripting attacks. This vulnerability arises through the pname parameter in the add_product.php and edit_product.php files, allowing malicious users to inject executable scripts. Such an attack can compromise the integrity of the web application and pose significant risks to users by potentially exposing sensitive information. It is crucial for users and administrators to implement security measures to mitigate this vulnerability and enhance the overall security posture of their web applications.

References

https://github.com/npemma2/PHP_DairyFarm_XSS

Timeline

Vulnerability published
Sep 23, 2024