cvelist/2024/10xxx/CVE-2024-10197.json

{
    "data_version": "4.0",
    "data_type": "CVE",
    "data_format": "MITRE",
    "CVE_data_meta": {
        "ID": "CVE-2024-10197",
        "ASSIGNER": "cna@vuldb.com",
        "STATE": "PUBLIC"
    },
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file /manage_supplier.php of the component Manage Supplier Page. The manipulation of the argument address leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well."
            },
            {
                "lang": "deu",
                "value": "Es wurde eine problematische Schwachstelle in code-projects Pharmacy Management System 1.0 ausgemacht. Es geht dabei um eine nicht klar definierte Funktion der Datei /manage_supplier.php der Komponente Manage Supplier Page. Mittels dem Manipulieren des Arguments address mit unbekannten Daten kann eine cross site scripting-Schwachstelle ausgenutzt werden. Der Angriff kann \u00fcber das Netzwerk passieren. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "Cross Site Scripting",
                        "cweId": "CWE-79"
                    }
                ]
            }
        ]
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "vendor_name": "code-projects",
                    "product": {
                        "product_data": [
                            {
                                "product_name": "Pharmacy Management System",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_affected": "=",
                                            "version_value": "1.0"
                                        }
                                    ]
                                }
                            }
                        ]
                    }
                }
            ]
        }
    },
    "references": {
        "reference_data": [
            {
                "url": "https://vuldb.com/?id.281022",
                "refsource": "MISC",
                "name": "https://vuldb.com/?id.281022"
            },
            {
                "url": "https://vuldb.com/?ctiid.281022",
                "refsource": "MISC",
                "name": "https://vuldb.com/?ctiid.281022"
            },
            {
                "url": "https://vuldb.com/?submit.426884",
                "refsource": "MISC",
                "name": "https://vuldb.com/?submit.426884"
            },
            {
                "url": "https://gist.github.com/higordiego/bc051be4a8c6b6641578cad533742aab",
                "refsource": "MISC",
                "name": "https://gist.github.com/higordiego/bc051be4a8c6b6641578cad533742aab"
            },
            {
                "url": "https://code-projects.org/",
                "refsource": "MISC",
                "name": "https://code-projects.org/"
            }
        ]
    },
    "credits": [
        {
            "lang": "en",
            "value": "c4ttr4ck (VulDB User)"
        }
    ],
    "impact": {
        "cvss": [
            {
                "version": "3.1",
                "baseScore": 2.4,
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N",
                "baseSeverity": "LOW"
            },
            {
                "version": "3.0",
                "baseScore": 2.4,
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N",
                "baseSeverity": "LOW"
            },
            {
                "version": "2.0",
                "baseScore": 3.3,
                "vectorString": "AV:N/AC:L/Au:M/C:N/I:P/A:N"
            }
        ]
    }
}
"-Synchronized-Data." 2024-10-20 19:00:34 +00:00			`{`
"-Synchronized-Data." 2024-10-21 01:00:32 +00:00			`"data_version": "4.0",`
"-Synchronized-Data." 2024-10-20 19:00:34 +00:00			`"data_type": "CVE",`
			`"data_format": "MITRE",`
			`"CVE_data_meta": {`
			`"ID": "CVE-2024-10197",`
"-Synchronized-Data." 2024-10-21 01:00:32 +00:00			`"ASSIGNER": "cna@vuldb.com",`
			`"STATE": "PUBLIC"`
"-Synchronized-Data." 2024-10-20 19:00:34 +00:00			`},`
			`"description": {`
			`"description_data": [`
			`{`
			`"lang": "eng",`
"-Synchronized-Data." 2024-10-21 01:00:32 +00:00			`"value": "A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file /manage_supplier.php of the component Manage Supplier Page. The manipulation of the argument address leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well."`
			`},`
			`{`
			`"lang": "deu",`
			`"value": "Es wurde eine problematische Schwachstelle in code-projects Pharmacy Management System 1.0 ausgemacht. Es geht dabei um eine nicht klar definierte Funktion der Datei /manage_supplier.php der Komponente Manage Supplier Page. Mittels dem Manipulieren des Arguments address mit unbekannten Daten kann eine cross site scripting-Schwachstelle ausgenutzt werden. Der Angriff kann \u00fcber das Netzwerk passieren. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."`
			`}`
			`]`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "Cross Site Scripting",`
			`"cweId": "CWE-79"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"vendor_name": "code-projects",`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "Pharmacy Management System",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_affected": "=",`
			`"version_value": "1.0"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"url": "https://vuldb.com/?id.281022",`
			`"refsource": "MISC",`
			`"name": "https://vuldb.com/?id.281022"`
			`},`
			`{`
			`"url": "https://vuldb.com/?ctiid.281022",`
			`"refsource": "MISC",`
			`"name": "https://vuldb.com/?ctiid.281022"`
			`},`
			`{`
			`"url": "https://vuldb.com/?submit.426884",`
			`"refsource": "MISC",`
			`"name": "https://vuldb.com/?submit.426884"`
			`},`
			`{`
			`"url": "https://gist.github.com/higordiego/bc051be4a8c6b6641578cad533742aab",`
			`"refsource": "MISC",`
			`"name": "https://gist.github.com/higordiego/bc051be4a8c6b6641578cad533742aab"`
			`},`
			`{`
			`"url": "https://code-projects.org/",`
			`"refsource": "MISC",`
			`"name": "https://code-projects.org/"`
			`}`
			`]`
			`},`
			`"credits": [`
			`{`
			`"lang": "en",`
			`"value": "c4ttr4ck (VulDB User)"`
			`}`
			`],`
			`"impact": {`
			`"cvss": [`
			`{`
			`"version": "3.1",`
			`"baseScore": 2.4,`
			`"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N",`
			`"baseSeverity": "LOW"`
			`},`
			`{`
			`"version": "3.0",`
			`"baseScore": 2.4,`
			`"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N",`
			`"baseSeverity": "LOW"`
			`},`
			`{`
			`"version": "2.0",`
			`"baseScore": 3.3,`
			`"vectorString": "AV:N/AC:L/Au:M/C:N/I:P/A:N"`
"-Synchronized-Data." 2024-10-20 19:00:34 +00:00			`}`
			`]`
			`}`
			`}`