CVE-2024-0282

Name of the Vulnerable Software and Affected Versions Kashipara Food Management System version 1.0

Description A vulnerability was found in the Kashipara Food Management System, affecting an unknown part of the file addmaterialsubmit.php. The manipulation of the tin argument leads to cross-site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Recommendations For Kashipara Food Management System version 1.0, consider disabling the addmaterialsubmit.php file or restricting access to it until a patch is available. As a temporary workaround, avoid using the tin argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.