CVE-2024-7815

NVD Published Date: August 15, 2024 at 04:15 AM
NVD Last Modified: August 19, 2024 at 06:32 PM
Download Patch
Vulnerability ID
CVE-2024-7815
Severity
MEDIUM
Severity Score
4.8
Summary
A vulnerability has been found in CodeAstro Online Railway Reservation System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/admin-update-employee.php of the component Update Employee Page. The manipulation of the argument emp_fname /emp_lname /emp_nat_idno/emp_addr leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Mitigation and Patches
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
CWE ID
CWE-79

Recent Publish

CVE-2024-7814

CVE-2024-6534

CVE-2024-7063

CVE-2024-7064

CVE-2024-7411

CVE-2024-43275

See SecOps Solution
in action

Schedule Demo