CVE-2024-10756

CWE-79Cross-site Scripting (XSS)3 documents3 sources
Severity
5.3MEDIUM
EPSS
0.2%
top 53.50%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Phpgurukul Online Shopping Portal
Timeline
PublishedNov 4

Description

A vulnerability classified as problematic was found in PHPGurukul Online Shopping Portal 2.0. Affected by this vulnerability is an unknown functionality of the file /admin/assets/plugins/DataTables/media/unit_testing/templates/html_table.php. The manipulation of the argument scripts leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

Affected Packages2 packages

🔴Vulnerability Details

2
CVEList
PHPGurukul Online Shopping Portal html_table.php cross site scripting2024-11-04
GHSA
GHSA-8fqg-98qq-f4p9: A vulnerability classified as problematic was found in PHPGurukul Online Shopping Portal 22024-11-04
CVE-2024-10756 (MEDIUM CVSS 5.3) | A vulnerability classified as probl | cvebase.io