cve/CVE-2024-7815.md at d4008b737b938a9157ba7124dec36d779d270b18

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-30 18:56:19 +00:00

0xMarcio d4008b737b Update CVE sources 2024-08-15 18:54

2024-08-15 18:54:34 +00:00

Description

A vulnerability has been found in CodeAstro Online Railway Reservation System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/admin-update-employee.php of the component Update Employee Page. The manipulation of the argument emp_fname /emp_lname /emp_nat_idno/emp_addr leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

POC

Reference

https://github.com/CYB84/CVE_Writeup/blob/main/Online%20Railway%20Reservation%20System/Stored%20XSS.md

Github

No PoCs found on GitHub currently.

1.0 KiB Raw Blame History

CVE-2024-7815

Description

POC

Reference

Github

1.0 KiB

Raw Blame History