PT-2025-43901 · Code Projects · Simple Banking System

936803842

Publicado

2025-10-27

Atualizado

2025-10-27

CVE-2025-12244

CVSS v3.1

6.1

Média

Vetor

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions code-projects Simple E-Banking System version 1.0

Description A flaw exists in code-projects Simple E-Banking System 1.0, specifically within the /eBank/register.php file. Manipulation of the Username argument can result in cross site scripting. This attack can be initiated remotely. The exploit for this issue has been publicly disclosed.

Recommendations Apply a fix to address the manipulation of the Username argument in the /eBank/register.php file.

Exploit

Correção

XSS

Code Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-79CWE-94

Identificadores relacionados

CVE-2025-12244

Produtos afetados

Simple Banking System

PT-2025-43901 · Code Projects · Simple Banking System

CVE-2025-12244

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 9