CVE-2024-2832

Name of the Vulnerable Software and Affected Versions Campcodes Online Shopping System version 1.0

Description A vulnerability was found in the file /offersmail.php, where the manipulation of the email argument leads to cross-site scripting. The attack can be initiated remotely.

Recommendations For Campcodes Online Shopping System version 1.0, sanitize the email input field in the /offersmail.php file to prevent cross-site scripting attacks. Update the code to handle user input securely. Check with the vendor for available patches. As a temporary workaround, consider restricting access to the /offersmail.php file until a patch is available.