CVE-2024-7843

CWE-200Information Exposure3 documents3 sources
Severity
6.9MEDIUM
EPSS
0.2%
top 51.87%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Sourcecodester Online Graduate Tracer SystemTamparongj03 Online Graduate Tracer System
Timeline
PublishedAug 15
Latest updateAug 16

Description

A vulnerability, which was classified as problematic, was found in SourceCodester Online Graduate Tracer System 1.0. Affected is an unknown function of the file /tracking/admin/exportcs.php. The manipulation leads to information disclosure. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-p66m-6jrh-qw22: A vulnerability, which was classified as problematic, was found in SourceCodester Online Graduate Tracer System 12024-08-16
CVEList
SourceCodester Online Graduate Tracer System exportcs.php information disclosure2024-08-15
CVE-2024-7843 (MEDIUM CVSS 6.9) | A vulnerability | cvebase.io