CVE-2024-13196 – Donglight Bookstore Cross-Site Scripting Vulnerability

CVE ID : CVE-2024-13196

Published : Jan. 9, 2025, 12:15 a.m. | 1 hour ago

Description : A vulnerability was found in donglight bookstore电商书城系统说明 1.0.0. It has been declared as problematic. This vulnerability affects the function BookSearchList of the file src/main/java/org/zdd/bookstore/web/controller/BookInfoController.java. The manipulation of the argument keywords leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 3.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-13196 – Donglight Bookstore Cross-Site Scripting Vulnerability