CVE-2024-55056

CWE-79 — Cross-site Scripting (XSS)3 documents3 sources

Severity

5.4MEDIUM

EPSS

0.1%

top 76.21%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Phpgurukul Online Birth Certificate System

Timeline

PublishedDec 17

Description

A stored cross-site scripting (XSS) vulnerability was identified in Phpgurukul Online Birth Certificate System 1.0 in /user/certificate-form.php via the full name field.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:NExploitability: 2.3 | Impact: 2.7

Affected Packages1 packages

▶NVDphpgurukul/online_birth_certificate_system1.0

🔴Vulnerability Details

GHSA

GHSA-9r59-cc3r-2gm6: A stored cross-site scripting (XSS) vulnerability was identified in Phpgurukul Online Birth Certificate System 1↗2024-12-17

▶

CVEList

CVE-2024-55056: A stored cross-site scripting (XSS) vulnerability was identified in Phpgurukul Online Birth Certificate System 1↗2024-12-17

▶