Description

Cross-Site Scripting (XSS) vulnerabilities in Anuj Kumar's Client Management System Version 1.2 allow local attackers to inject arbitrary web script or HTML via the search input field parameter to admin search invoice page and client search invoice page.

INFO

Published Date :

2024-11-20T00:00:00.000Z

Last Modified :

2024-11-20T20:57:53.683Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2024-51209 vulnerability.

Vendors Products
Phpgurukul
  • Client Management System
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-51209.

URL Resource
https://gist.github.com/Esquirez/0c41e0279ca11d9bfc52c3938041d935 cve-icon cve-icon
https://phpgurukul.com/client-management-system-using-php-mysql/ cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact