CVE-2024-40484

CWE-79Cross-site Scripting (XSS)3 documents3 sources
Severity
6.1MEDIUM
EPSS
0.5%
top 36.24%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Phpgurukul OLD AGE Home Management System
Timeline
PublishedAug 12

Description

A Reflected Cross Site Scripting (XSS) vulnerability was found in "/oahms/search.php" in PHPGurukul Old Age Home Management System v1.0, which allows remote attackers to execute arbitrary code via the "searchdata" parameter.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-8qcr-ggrf-g25w: A Reflected Cross Site Scripting (XSS) vulnerability was found in "/oahms/search2024-08-12
CVEList
CVE-2024-40484: A Reflected Cross Site Scripting (XSS) vulnerability was found in "/oahms/search2024-08-08
CVE-2024-40484 (MEDIUM CVSS 6.1) | A Reflected Cross Site Scripting (X | cvebase.io