CVE-2024-4675

CVSS 2.0 Score 4.0 of 10 (medium)

Details

Published May 14, 2024

Updated: Jun 4, 2024

CWE ID 79

Summary

CVE-2024-4675 is a newly discovered vulnerability in the Campcodes Complete Web-Based School Management System 1.0. This issue is classified as problematic and affects the code of the file /view/show_events.php. An attacker can exploit this cross-site scripting (XSS) vulnerability by manipulating the event_id argument. The exploit can be initiated remotely and the attacker can inject malicious scripts into the webpage. This vulnerability, identified as VDB-263596, has been disclosed to the public, increasing the risk of exploitation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/v1l5EW
https://www.cve.org/CVERecord?id=CVE-2024-4675
https://nvd.nist.gov/vuln/detail/CVE-2024-4675

Back to Vulnerability Database

CVE-2024-4675

CVSS 2.0 Score 4.0 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations