CVE-2024-12359 – Code-projects Admin Dashboard Cross-Site Scripting Vulnerability

12月 9, 2024
6:16 am

CVE ID : CVE-2024-12359

Published : Dec. 9, 2024, 5:15 a.m. | 1 hour, 1 minute ago

Description : A vulnerability was found in code-projects Admin Dashboard 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /vendor_management.php. The manipulation of the argument username leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The initial researcher advisory mentions contradicting product names.

Severity: 3.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-12359 – Code-projects Admin Dashboard Cross-Site Scripting Vulnerability

Elvescore.io

Recent Posts

CVE-2024-12960 – Apache MCA 1.0 SQL Injection Vulnerability

CVE-2024-12961 – Apache MCA Portfolio Management System SQL Injection Vulnerability

CVE-2024-12908 – Delinea Secret Server Regular Expression Injection Vulnerability

CVE-2024-12958 – RPost MCA SQL Injection Vulnerability

CVE-2024-12959 – “Fortress MCA SQL Injection”

CVE-2024-51540 – Dell ECS Arithmetic Overflow Vulnerability (Path Traversal)

CVE-2024-12359 – Code-projects Admin Dashboard Cross-Site Scripting Vulnerability

CVE-2024-12359 – Code-projects Admin Dashboard Cross-Site Scripting Vulnerability