CVE-2024-4686

CVSS 2.0 Score 4.0 of 10 (medium)

Details

Published May 14, 2024

Updated: Jun 20, 2024

CWE ID 79

Summary

CVE-2024-4686 is a newly disclosed vulnerability affecting the Campcodes Complete Web-Based School Management System version 1.0. This issue, rated as problematic, pertains to the processing of the file /view/emarks_range_grade_update_form.php. An attacker can exploit this cross-site scripting (XSS) vulnerability by manipulating the argument "grade." The exploit can be initiated remotely, and the vulnerability details have been made public, increasing the risk of widespread exploitation. The associated identifier for this vulnerability is VDB-263627.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/v1yarw
https://www.cve.org/CVERecord?id=CVE-2024-4686
https://nvd.nist.gov/vuln/detail/CVE-2024-4686

Back to Vulnerability Database

CVE-2024-4686

CVSS 2.0 Score 4.0 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations