CVE-2024-41519

Feripro = v2.2.3 is vulnerable to Cross Site Scripting XSS via "/admin/programm//zuordnung/veranstaltungen/" through the "school" input field...

PT-2024-29437 · Feripro · Feripro

Name of the Vulnerable Software and Affected Versions: Feripro versions prior to 2.2.4 Description: The issue concerns a Cross Site Scripting XSS vulnerability. It can be exploited via the "/admin/programm//zuordnung/veranstaltungen/" endpoint through the school input field. Recommendations: For...