cve/CVE-2024-7814.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-05 10:17:57 +00:00

0xMarcio d4008b737b Update CVE sources 2024-08-15 18:54

2024-08-15 18:54:34 +00:00

1.0 KiB

Raw Permalink Blame History

CVE-2024-7814

Description

A vulnerability, which was classified as problematic, was found in CodeAstro Online Railway Reservation System 1.0. Affected is an unknown function of the file /admin/admin-add-employee.php of the component Add Employee Page. The manipulation of the argument emp_fname /emp_lname /emp_nat_idno/emp_addr leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

POC

Reference

https://github.com/CYB84/CVE_Writeup/blob/main/Online%20Railway%20Reservation%20System/Stored%20XSS.md

Github

No PoCs found on GitHub currently.

1.0 KiB Raw Permalink Blame History

CVE-2024-7814

Description

POC

Reference

Github

1.0 KiB

Raw Permalink Blame History