PT-2024-28861 · Sourcecodester · Sourcecodester Best House Rental Management System

Published

2024-08-08

Updated

2024-08-15

CVE-2024-40474

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions SourceCodester House Rental Management System version 1.0

Description A Reflected Cross Site Scripting (XSS) vulnerability was found in the "edit-cate.php" file. This issue allows for the execution of malicious scripts, potentially leading to unauthorized access or data theft.

Recommendations For SourceCodester House Rental Management System version 1.0, consider disabling access to the "edit-cate.php" file until a patch is available. Restricting user input in this file can also help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2024-40474

Affected Products

Sourcecodester Best House Rental Management System

PT-2024-28861 · Sourcecodester · Sourcecodester Best House Rental Management System

CVE-2024-40474

Weakness Enumeration

Related Identifiers

Affected Products

References · 9