A vulnerability, which was classified as problematic, has been found in oretnom23 Online Car Wash Booking System 1.0. This issue affects some unknown processing of the file /admin/?page=user/list. The manipulation of the argument First Name/Last Name with the input <script>confirm (document.cookie)</script> leads to cross site scripting. The attack may be initiated remotely. The associated identifier of this vulnerability is VDB-266303.
References
Configurations
No configuration.
History
21 Nov 2024, 09:47
Type | Values Removed | Values Added |
---|---|---|
References | () https://vuldb.com/?ctiid.266303 - | |
References | () https://vuldb.com/?id.266303 - | |
References | () https://vuldb.com/?submit.344504 - |
28 May 2024, 12:39
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
27 May 2024, 00:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-05-27 00:15
Updated : 2024-11-21 09:47
NVD link : CVE-2024-5385
Mitre link : CVE-2024-5385
CVE.ORG link : CVE-2024-5385
JSON object : View
Products Affected
No product.
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')