CVE-2024-9033

Summary

CVE-2024-9033 is a vulnerability identified in SourceCodester Best House Rental Management System version 1.0, specifically affecting the functionality of the file /ajax.php?action=save_category, which is susceptible to cross-site scripting (XSS) attacks. This vulnerability can be exploited remotely by manipulating the input argument "name," posing a potential risk to organizations using this software. The exploit has been publicly disclosed, increasing the likelihood of attacks. To remediate this vulnerability, affected users should sanitize and validate inputs properly to prevent malicious scripts from being executed. The vulnerability has a low severity rating with a CVSS base score of 3.5, indicating that while it requires user interaction and low privileges, it could still compromise the integrity of affected systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.