Lucene search

CVE-2024-7068

🗓️ 24 Jul 2024 15:12:15Reported by VulDBType

cve🔗 web.nvd.nist.gov👁 36 Views🌐 WEB

A cross site scripting vulnerability in SourceCodester Insurance Management System 1.

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 3
Cvelist	CVE-2024-7068 SourceCodester Insurance Management System update_sub_category cross site scripting	24 Jul 202415:00	–	cvelist
NVD	CVE-2024-7068	24 Jul 202415:15	–	nvd
Vulnrichment	CVE-2024-7068 SourceCodester Insurance Management System update_sub_category cross site scripting	24 Jul 202415:00	–	vulnrichment

Nvd

Vulners

Vulnrichment

Node

munyweki insurance_management_systemMatch1.0

[
  {
    "vendor": "SourceCodester",
    "product": "Insurance Management System",
    "versions": [
      {
        "version": "1.0",
        "status": "affected"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
github	www.github.com/rtsjx-cve/cve/blob/main/xss2.md

Parameter	Position	Path	Description	CWE
name	query param	/Script/admin/core/update_sub_category	Cross Site Scripting vulnerability in the update_sub_category endpoint due to improper handling of the 'name' parameter.	CWE-79

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Jul 2024 15:15Current

3.8Low risk

Vulners AI Score3.8

CVSS24

CVSS33.5 - 4.6

CVSS45.3

EPSS0.001

SSVC

CWE-79