CVE-2024-8136

Name of the Vulnerable Software and Affected Versions: SourceCodester Record Management System version 1.0

Description: A problematic vulnerability was found in the SourceCodester Record Management System, affecting an unknown part of the file sort1 user.php. The manipulation of the position argument leads to cross-site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Recommendations: For SourceCodester Record Management System version 1.0, consider disabling access to the file sort1 user.php or restricting the manipulation of the position argument until a patch is available. As a temporary workaround, avoid using the position argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.