admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2024/CVE-2024-1103.md

18 lines
1.1 KiB
Markdown
Raw Permalink Normal View History

Update CVE sources 2024-06-09 00:33
2024-06-09 00:33:16 +00:00
### [CVE-2024-1103](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1103)
![](https://img.shields.io/static/v1?label=Product&message=Real%20Estate%20Management%20System&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%201.0%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-79%20Cross%20Site%20Scripting&color=brighgreen)
### Description
A vulnerability was found in CodeAstro Real Estate Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file profile.php of the component Feedback Form. The manipulation of the argument Your Feedback with the input <img src=x onerror=alert(document.cookie)> leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-252458 is the identifier assigned to this vulnerability.
### POC
#### Reference
Removed duplicates
2024-06-18 02:51:15 +02:00
- https://docs.google.com/document/d/18M55HRrxHQ9Jhph6CwWF-d5epAKtOSHt/edit?usp=drive_link&ouid=105609487033659389545&rtpof=true&sd=true
Update CVE sources 2024-06-09 00:33
2024-06-09 00:33:16 +00:00
#### Github
No PoCs found on GitHub currently.
Reference in New Issue Copy Permalink