CVE-2024-0183: RRJ Nueva Ecija Engineer Online Portal NIA Office students.php cross site scripting
First published: Mon Jan 01 2024(Updated: )
A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been classified as problematic. This affects an unknown part of the file /admin/students.php of the component NIA Office. The manipulation leads to basic cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-249441 was assigned to this vulnerability.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Engineers Online Portal | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-0183?
CVE-2024-0183 has been classified as a problematic vulnerability.
What component is affected by CVE-2024-0183?
CVE-2024-0183 affects the /admin/students.php file within the NIA Office component.
What type of vulnerability is CVE-2024-0183?
CVE-2024-0183 is a cross-site scripting (XSS) vulnerability.
How do I fix CVE-2024-0183?
To fix CVE-2024-0183, sanitize and validate user input in the affected file to prevent script injection.
Which software version is impacted by CVE-2024-0183?
CVE-2024-0183 impacts version 1.0 of the RRJ Nueva Ecija Engineer Online Portal.
- collector/mitre-cve
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- agent/references
- agent/weakness
- agent/author
- agent/severity
- agent/title
- agent/event
- agent/description
- collector/epss-latest
- source/FIRST
- agent/epss
- agent/last-modified-date
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/nia
- canonical/engineers online portal
- version/engineers online portal/1.0