CVE-2024-11820 : CODE-PROJECTS CRUD OPERATION SYSTEM 1.0 /ADD.PHP SADDRESS CROSS SITE SCRIPTING

Description

A vulnerability, which was classified as problematic, has been found in code-projects Crud Operation System 1.0. This issue affects some unknown processing of the file /add.php. The manipulation of the argument saddress leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

References

VDB-286193 | Code-projects Crud Operation System add.php cross site scripting

VDB-286193 | CTI Indicators (IOB, IOC, TTP, IOA)

Submit #451525 | code-projects Crud Operation System In PHP v1.0 Cross Site Scripting

https://github.com/xiaobai19198/cve/blob/main/xss.md

https://code-projects.org/

For More Information

CVERecord

Contact us to get started

CVE-2024-8114 : GITLAB COMMUNITY EDITION/ENTERPRISE EDITION UP TO 17.4.4/17.5.2/17.6.0 PERSONAL ACCESS TOKEN AUTHORIZATION

Description An issue has been discovered in GitLab CE/EE affecting all versions from 8.12 before 17.4.5, 17.5 before 17.5.3, and

Learn more

CVE-2024-49052 : MICROSOFT AZURE FUNCTIONS POLICYWATCH MISSING AUTHENTICATION

Description Missing authentication for critical function in Microsoft Azure PolicyWatch allows an unauthorized attacker to elevate privileges over a network.

Learn more

CVE-2024-49035 : MICROSOFT PARTNER CENTER PARTNER.MICROSOFT.COM PRIVILEGES MANAGEMENT

Description An improper access control vulnerability in Partner.Microsoft.com allows an a unauthenticated attacker to elevate privileges over a network. References

Learn more