4 matches found
CVE-2024-33991
creationtimestamp| type| source ---|---|--- 2024-08-06 15:51:29+00:00| seen| https://t.me/cvedetector/2589...
CVE-2024-33991 Cross-Site Scripting (XSS) vulnerability in Janobe School Event Management System
Cross-Site Scripting XSS vulnerability in School Event Management System affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the 'view' parameter in '/eventwinner/index.php'...
CVE-2024-33991 Cross-Site Scripting (XSS) vulnerability in Janobe School Event Management System
Cross-Site Scripting XSS vulnerability in School Event Management System affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the 'view' parameter in '/eventwinner/index.php'...
CVE-2024-33991
CVE-2024-33991 is an XSS vulnerability in School Event Management System version 1.0. The flaw occurs in the server-side handling of the query parameter 'view' in /eventwinner/index.php , where attacker input can be reflected to retrieve stored information. Documents identify the affected product...