CVE-2024-0501

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Published Jan 13, 2024

Updated: May 17, 2024

CWE ID 79

Summary

CVE-2024-0501 is a newly disclosed vulnerability affecting the SourceCodester House Rental Management System 1.0. This issue lies within the Manage Invoice Details component and is classified as a cross-site scripting (XSS) vulnerability. By manipulating the Invoice argument, an attacker can inject malicious scripts into the webpage, which can be executed in the user's browser upon visiting a specially crafted website. This vulnerability allows remote attacks and can lead to data theft or unauthorized access. The identifier VDB-250609 has been assigned to this vulnerability, and it is currently publicly known and exploitable.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database