CVE-2024-13143 – ZeroWdd Studentmanager Cross-Site Scripting Vulnerability

1月 6, 2025
1:18 am

CVE ID : CVE-2024-13143

Published : Jan. 6, 2025, 12:15 a.m. | 1 hour, 3 minutes ago

Description : A vulnerability was found in ZeroWdd studentmanager 1.0. It has been rated as problematic. This issue affects the function submitAddPermission of the file src/main/java/com/zero/system/controller/PermissionController. java. The manipulation of the argument url leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

Severity: 2.4 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-13143 – ZeroWdd Studentmanager Cross-Site Scripting Vulnerability

Elvescore.io

Recent Posts

CVE-2024-12131 – WordPress WP Job Portal Insecure Direct Object Reference

CVE-2024-12426 – LibreOffice Environmental Variable Exfiltration

CVE-2024-12738 – WordPress User Profile Builder XSS

CVE-2024-45100 – IBM Security ReaQta Denial of Service

CVE-2024-45640 – IBM Security ReaQta Information Disclosure Vulnerability

CVE-2024-11826 – Quill Forms Stored Cross-Site Scripting Vulnerability

CVE-2024-13143 – ZeroWdd Studentmanager Cross-Site Scripting Vulnerability

CVE-2024-13143 – ZeroWdd Studentmanager Cross-Site Scripting Vulnerability