Cross Site Scripting Vulnerability in Employee and Visitor Gate Pass Logging System 1.0
CVE-2024-6650

4.8MEDIUM

Key Information:

Vendor: SourceCodester
Status: Employee And Visitor Gate Pass Logging System
Vendor: CVE Published:; 10 July 2024

Summary

A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0 and classified as problematic. Affected by this issue is the function save_designation of the file /classes/Master.php. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-271058 is the identifier assigned to this vulnerability.

References

https://vuldb.com/?id.271058

https://vuldb.com/?ctiid.271058

https://vuldb.com/?submit.370664

CVSS V3.1

Score:

4.8

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Jul 10, 2024