CVE-2024-51181

6.1MEDIUM

Key Information:

Vendor
PHPgurukul
Status
Ifsc Code Finder
Vendor
CVE Published:
29 October 2024

Summary

A Reflected Cross Site Scripting (XSS) vulnerability was found in /ifscfinder/admin/profile.php in PHPGurukul IFSC Code Finder Project v1.0, which allows remote attackers to execute arbitrary code via " searchifsccode" parameter.

References

https://github.com/Santoshcyber1/CVE-wirteup/blob/main/Ph...

CVSS V3.1

Score:
6.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

Collectors

NVD Database
.