CVE-2024-12998

Name of the Vulnerable Software and Affected Versions code-projects Online Car Rental System version 1.0

Description A problematic issue was found in the code-projects Online Car Rental System, affecting an unknown part of the file /index.php of the component GET Parameter Handler. This issue leads to cross-site scripting and can be initiated remotely. The exploit has been disclosed to the public and may be used.

Recommendations For code-projects Online Car Rental System version 1.0, consider disabling the GET Parameter Handler in the /index.php file as a temporary workaround until a patch is available. Restrict access to the /index.php file to minimize the risk of exploitation. Avoid using the affected component until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.