PT-2025-2069 · Unknown · Singmr Houserent

Lvzc2

Published

2025-01-09

Updated

2025-10-15

CVE-2024-13213

CVSS v3.1

5.4

Medium

Vector

AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions SingMR HouseRent version 1.0

Description A vulnerability was found in SingMR HouseRent, affecting unknown code of the file "/toAdminUpdateHousePage?hID=30". The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Recommendations For SingMR HouseRent version 1.0, consider disabling access to the "/toAdminUpdateHousePage?hID=30" endpoint until a patch is available. Restrict input to prevent cross site scripting attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

XSS

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79CWE-94

Related Identifiers

CVE-2024-13213

Affected Products

Singmr Houserent

PT-2025-2069 · Unknown · Singmr Houserent

CVE-2024-13213

Weakness Enumeration

Related Identifiers

Affected Products

References · 10