CVE-2024-8153

CWE-79Cross-site Scripting (XSS)3 documents3 sources
Severity
5.3MEDIUM
EPSS
0.1%
top 67.10%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Sourcecodester QR Code Bookmark SystemRems QR Code Bookmark System
Timeline
PublishedAug 25
Latest updateAug 26

Description

A vulnerability was found in SourceCodester QR Code Bookmark System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /endpoint/delete-bookmark.php. The manipulation of the argument bookmark leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-2478-6pxx-q8gv: A vulnerability was found in SourceCodester QR Code Bookmark System 12024-08-26
CVEList
SourceCodester QR Code Bookmark System delete-bookmark.php cross site scripting2024-08-25
CVE-2024-8153 (MEDIUM CVSS 5.3) | A vulnerability was found in Source | cvebase.io