Lucene search
K

4 matches found

NVD
NVD
added 2024/08/06 1:15 p.m.32 views

CVE-2024-33982

Cross-Site Scripting XSS vulnerability in School Attendance Monitoring System and School Event Management System affecting version 1.0. An attacker could create a specially crafted URL and send it to a victim to obtain details of their session cookie via the 'StudentID' parameter in...

7.1CVSS0.00291EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/06 1:0 p.m.18 views

CVE-2024-33982 Cross-Site Scripting (XSS) vulnerability in Janobe products

Cross-Site Scripting XSS vulnerability in School Attendance Monitoring System and School Event Management System affecting version 1.0. An attacker could create a specially crafted URL and send it to a victim to obtain details of their session cookie via the 'StudentID' parameter in...

7.1CVSS5.8AI score0.00291EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/06 1:0 p.m.28 views

CVE-2024-33982 Cross-Site Scripting (XSS) vulnerability in Janobe products

Cross-Site Scripting XSS vulnerability in School Attendance Monitoring System and School Event Management System affecting version 1.0. An attacker could create a specially crafted URL and send it to a victim to obtain details of their session cookie via the 'StudentID' parameter in...

7.1CVSS0.00291EPSS
Exploits0References1
CVE
CVE
added 2024/08/06 1:0 p.m.35 views

CVE-2024-33982

The CVE-2024-33982 entry corresponds to an XSS flaw in School Attendance Monitoring System v1.0 and School Event Management System v1.0. The vulnerability arises from unsafely handling the StudentID parameter in /AttendanceMonitoring/student/controller.php, enabling an attacker to craft a URL to ...

7.1CVSS6.2AI score0.00291EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder