CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-0345

A vulnerability, which was classified as problematic, was found in CodeAstro Vehicle Booking System 1.0. This affects an unknown part of the file usr/usr-register.php of the component User Registration. The manipulation of the argument Full_Name/Last_Name/Address with the input <script>alert(document.cookie)</script> leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-250113 was assigned to this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 24.3%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 5.0

References

https://drive.google.com/file/d/1ihxLw4kzbAbDhHtca3UnTaB-iMWHi5DJ/view?usp=sharing
https://vuldb.com/?ctiid.250113
https://vuldb.com/?id.250113
https://drive.google.com/file/d/1ihxLw4kzbAbDhHtca3UnTaB-iMWHi5DJ/view?usp=sharing
https://vuldb.com/?ctiid.250113
https://vuldb.com/?id.250113

Products affected by CVE-2024-0345

Vehicle Booking System Project » Vehicle Booking System » Version: 1.0

cpe:2.3:a:vehicle_booking_system_project:vehicle_booking_system:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-0345

Products

Pricing

Contact Us