CVE-2024-7657

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Aug 12, 2024

Updated: Aug 15, 2024

CWE ID 79

Summary

CVE-2024-7678 is a newly disclosed vulnerability affecting the SourceCodester Car Driving School Management System version 1.0. This issue, rated as problematic, lies within the /classes/Master.php?f=save_package file, where manipulation of argument names, descriptions, or training duration can lead to cross-site scripting. The vulnerability allows for remote exploitation and the public disclosure of the exploit increases the risk of attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Affected Vendors

Pluck -
Gilacms

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/xo35CU
https://www.cve.org/CVERecord?id=CVE-2024-7657
https://nvd.nist.gov/vuln/detail/CVE-2024-7657

Back to Vulnerability Database