Lucene search

K
cve[email protected]CVE-2024-28277
HistoryMay 14, 2024 - 3:14 p.m.

CVE-2024-28277

2024-05-1415:14:18
web.nvd.nist.gov
20
sourcecodester school task manager
vulnerability
stored cross-site scripting
xss attacks
execution of malicious javascript payloads
cve-2024-28277

5.7 Medium

AI Score

Confidence

High

0 Low

EPSS

Percentile

0.0%

In Sourcecodester School Task Manager v1.0, a vulnerability was identified within the subject_name= parameter, enabling Stored Cross-Site Scripting (XSS) attacks. This vulnerability allows attackers to manipulate the subject’s name, potentially leading to the execution of malicious JavaScript payloads.

5.7 Medium

AI Score

Confidence

High

0 Low

EPSS

Percentile

0.0%

Related for CVE-2024-28277