mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-28 01:02:25 +00:00
33 lines
1.2 KiB
JSON
33 lines
1.2 KiB
JSON
{
|
|
"id": "CVE-2024-35582",
|
|
"sourceIdentifier": "cve@mitre.org",
|
|
"published": "2024-05-28T20:16:36.037",
|
|
"lastModified": "2024-05-29T13:02:09.280",
|
|
"vulnStatus": "Awaiting Analysis",
|
|
"cveTags": [],
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "A cross-site scripting (XSS) vulnerability in Sourcecodester Laboratory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Department input field."
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "Una vulnerabilidad de Cross-site scripting (XSS) en Sourcecodester Laboratory Management System v1.0 permite a los atacantes ejecutar scripts web o HTML arbitrario a trav\u00e9s de un payload manipulado que se inyecta en el campo de entrada del Departamento."
|
|
}
|
|
],
|
|
"metrics": {},
|
|
"references": [
|
|
{
|
|
"url": "https://github.com/r04i7/CVE/blob/main/CVE-2024-35582.md",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "https://owasp.org/www-community/attacks/xss/",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "https://portswigger.net/web-security/cross-site-scripting/stored",
|
|
"source": "cve@mitre.org"
|
|
}
|
|
]
|
|
} |