PT-2024-33661 · Code Projects · Simple Chat System
Burak
·
Published
2024-05-16
·
Updated
2025-02-18
·
CVE-2024-4975
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions:
code-projects Simple Chat System version 1.0
Description:
A problematic issue has been found in the Message Handler component, leading to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Recommendations:
For code-projects Simple Chat System version 1.0, consider disabling the Message Handler component until a patch is available to prevent cross site scripting attacks. Restrict access to the component to minimize the risk of exploitation.
Exploit
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Simple Chat System