CVE-2024-0652
CVSS 3.1 Score 4.8 of 10 (medium)
Details
Summary
CVE-2024-0652 is a newly disclosed vulnerability affecting the PHPGurukul Company Visitor Management System version 1.0. This issue, rated as problematic, lies within the unknown functionality of the file search-visitor.php. Manipulation of this component can lead to cross-site scripting, enabling attackers to inject malicious code into unsuspecting users' browsers. The exploit can be launched remotely, increasing the potential threat to organizations using this software. Unfortunately, the details of this vulnerability have been made public, increasing the risk of active exploitation. VDB-251378 is the identifier assigned to this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.