A vulnerability was found in SourceCodester Yoga Class Registration System 1.0 and classified as problematic. This issue affects some unknown processing of the file /admin/inquiries/view_inquiry.php. The manipulation of the argument message leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
References
| Link | Resource |
|---|---|
| https://vuldb.com/?id.274757 | VDB Entry |
| https://vuldb.com/?ctiid.274757 | Permissions Required VDB Entry |
| https://vuldb.com/?submit.391663 | VDB Entry |
| https://github.com/Wsstiger/cve/blob/main/Yoga_xss.md | Exploit Third Party Advisory |
Configurations
History
29 Aug 2024, 15:23
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Oretnom23
Oretnom23 yoga Class Registration System |
|
| CPE | cpe:2.3:a:oretnom23:yoga_class_registration_system:1.0:*:*:*:*:*:*:* |
28 Aug 2024, 21:07
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Tips23
Tips23 yoga Class Registration System |
|
| CPE | cpe:2.3:a:tips23:yoga_class_registration_system:1.0:*:*:*:*:*:*:* | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.4 |
| References | () https://vuldb.com/?id.274757 - VDB Entry | |
| References | () https://vuldb.com/?submit.391663 - VDB Entry | |
| References | () https://vuldb.com/?ctiid.274757 - Permissions Required, VDB Entry | |
| References | () https://github.com/Wsstiger/cve/blob/main/Yoga_xss.md - Exploit, Third Party Advisory |
16 Aug 2024, 02:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2024-08-16 02:15
Updated : 2024-08-29 15:23
NVD link : CVE-2024-7852
Mitre link : CVE-2024-7852
JSON object : View
Products Affected
oretnom23
- yoga_class_registration_system
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')