CVE-2024-4673

CVSS 2.0 Score 4.0 of 10 (medium)

Details

Published May 14, 2024

Updated: Jun 4, 2024

CWE ID 79

Summary

CVE-2024-4673 represents a newly disclosed vulnerability in Campcodes Complete Web-Based School Management System 1.0. This issue affects an unspecified functionality within the file /view/show_student_grade_subject.php. The vulnerability stems from improper input validation, enabling attackers to execute cross-site scripting (XSS) attacks. The exploit can be triggered remotely, making it a serious concern for system security. The vulnerability's identifier is VDB-263594, and the exploit has been publicly disclosed, increasing the risk of potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/v1mn0c
https://www.cve.org/CVERecord?id=CVE-2024-4673
https://nvd.nist.gov/vuln/detail/CVE-2024-4673

Back to Vulnerability Database

CVE-2024-4673

CVSS 2.0 Score 4.0 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations