NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2024-4524

Summary	A vulnerability, which was classified as problematic, was found in Campcodes Complete Web-Based School Management System 1.0. This affects an unknown part of the file /view/student_payment_invoice.php. The manipulation of the argument desc leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-263127.
Publication Date	May 6, 2024, 3:15 p.m.
Registration Date	May 6, 2024, 8 p.m.
Last Update	May 17, 2024, 11:40 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://vuldb.com/?id.263127
2	https://vuldb.com/?ctiid.263127
3	https://vuldb.com/?submit.329770
4	https://github.com/E1CHO/cve_hub/blob/main/Complete%20Web-Based%20School%20Management%20System%20-%20xss/Complete%20Web-Based%20School%20Management%20System%20-%20vuln%2011.pdf

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-79	クロスサイト・スクリプティング（XSS）	https://cwe.mitre.org/data/definitions/79.html