Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2024-40478

Disclosure Date: August 12, 2024 (last updated September 17, 2024)
A Stored Cross Site Scripting (XSS) vulnerability was found in "/admin/afeedback.php" in Kashipara Online Exam System v1.0, which allows remote attackers to execute arbitrary code via "rname" and "email" parameter fields
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0