CVE-2024-10840

Name of the Vulnerable Software and Affected Versions romadebrian WEB-Sekolah version 1.0

Description A vulnerability has been found in the file /Admin/akun edit.php of the component Backend. The manipulation of the argument kode leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Recommendations For romadebrian WEB-Sekolah version 1.0, update to the latest version to mitigate risks. As a temporary workaround, consider restricting access to the /Admin/akun edit.php file until a patch is available. Avoid using the argument kode in the affected backend component until the issue is resolved.