CVE-2024-8583

CWE-79Cross-site Scripting (XSS)3 documents3 sources
Severity
5.3MEDIUM
EPSS
0.1%
top 67.35%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Sourcecodester Online Bank Management SystemSourcecodester Online Bank Management System -Oretnom23 Online Bank Management System
Timeline
PublishedSep 8
Latest updateSep 9

Description

A vulnerability was found in SourceCodester Online Bank Management System and Online Bank Management System - 1.0. It has been classified as problematic. This affects an unknown part of the file /mfeedback.php of the component Feedback Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

Affected Packages3 packages

🔴Vulnerability Details

2
GHSA
GHSA-v87f-v7fv-frg2: A vulnerability was found in SourceCodester Online Bank Management System and Online Bank Management System - 12024-09-09
CVEList
SourceCodester Online Bank Management System Feedback mfeedback.php cross site scripting2024-09-08
CVE-2024-8583 (MEDIUM CVSS 5.3) | A vulnerability was found in Source | cvebase.io