EUVD-2024-16807

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Vulnerability in CodeAstro Expense Management System allows remote cross site scripting attacks.

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2024-1031	21 Feb 202415:11	–	circl
CNNVD	Expense Management System 跨站脚本漏洞	30 Jan 202400:00	–	cnnvd
CNVD	Expense Management System Cross-Site Scripting Vulnerability	2 Feb 202400:00	–	cnvd
CVE	CVE-2024-1031	30 Jan 202413:00	–	cve
Cvelist	CVE-2024-1031 CodeAstro Expense Management System Add Expenses Page 5-Add-Expenses.php cross site scripting	30 Jan 202413:00	–	cvelist
NVD	CVE-2024-1031	30 Jan 202413:15	–	nvd
OSV	CVE-2024-1031	30 Jan 202413:15	–	osv
Prion	Cross site scripting	30 Jan 202413:15	–	prion
Positive Technologies	PT-2024-16176 · Unknown · Codeastro Expense Management System	30 Jan 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-1031	23 May 202509:41	–	redhatcve

[
  {
    "enisaIdVendor": [
      {
        "id": "4b945d40-bbcb-3aa1-acb2-38c8590b0e77",
        "vendor": {
          "name": "CodeAstro"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "629018a9-f6b4-36b0-b822-6734dbb01627",
        "product": {
          "name": "Expense Management System"
        },
        "product_version": "1.0"
      },
      {
        "id": "e0890664-489a-3cde-9cec-c2bb6f434db0",
        "product": {
          "name": "Expense Management System"
        }
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
docs	www.docs.qq.com/doc/DYmhqV3piekZ5dlZi

03 Oct 2025 20:07Current

4.8Medium risk

Vulners AI Score4.8

CVSS 3.13.5 - 6.1

CVSS 24

CVSS 33.5

EPSS0.0009

SSVC

vulnerability codeastro expense management system cross site scripting remote attack