A vulnerability was found in CodeAstro Real Estate Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file profile.php of the component Feedback Form. The manipulation of the argument Your Feedback with the input <img src=x onerror=alert(document.cookie)> leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-252458 is the identifier assigned to this vulnerability.
References
Link | Resource |
---|---|
https://docs.google.com/document/d/18M55HRrxHQ9Jhph6CwWF-d5epAKtOSHt/edit?usp=drive_link&ouid=105609487033659389545&rtpof=true&sd=true | Exploit Third Party Advisory |
https://vuldb.com/?ctiid.252458 | Permissions Required Third Party Advisory VDB Entry |
https://vuldb.com/?id.252458 | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: VulDB
Published: 2024-01-31T15:00:06.875Z
Updated: 2024-01-31T15:00:06.875Z
Reserved: 2024-01-31T08:58:45.286Z
Link: CVE-2024-1103
JSON object: View
NVD Information
Status : Modified
Published: 2024-01-31T15:15:10.863
Modified: 2024-05-17T02:35:14.273
Link: CVE-2024-1103
JSON object: View
Redhat Information
No data.
CWE