Vulnerability Details CVE-2024-3365
A vulnerability was found in SourceCodester Online Library System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file admin/users/controller.php. The manipulation of the argument user_name leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-259469 was assigned to this vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 26.9%
CVSS Severity
CVSS v3 Score 3.5
CVSS v2 Score 4.0
References
- https://github.com/thisissuperann/Vul/blob/main/Online-Library-System-07.md
- https://vuldb.com/?ctiid.259469
- https://vuldb.com/?id.259469
- https://vuldb.com/?submit.310432
- https://github.com/thisissuperann/Vul/blob/main/Online-Library-System-07.md
- https://vuldb.com/?ctiid.259469
- https://vuldb.com/?id.259469
- https://vuldb.com/?submit.310432
Products affected by CVE-2024-3365
-
cpe:2.3:a:janobe:online_library_system:1.0