Stored HTML Injection Risk in PHPGurukul Online Birth Certificate System
CVE-2024-55059

Currently unrated

Key Information:

Vendor: PHPGurukul
Status: Online Birth Certificate System
Vendor: CVE Published:; 17 December 2024

Summary

A critical stored HTML injection vulnerability has been found in PHPGurukul's Online Birth Certificate System version 1.0. The vulnerability, located in the 'certificate-form.php' file, could allow attackers to inject malicious HTML content into the system. This risk can compromise user data and lead to unauthorized access. Organizations using this software should take immediate action to implement security patches and mitigate potential exploitation risks.

References

https://github.com/SCR-athif/CVE/tree/main/CVE-2024-55059

Timeline

Vulnerability published
Dec 17, 2024