CVE-2024-12932: code-projects Simple Admin Panel addSizeController.php cross site scripting
First published: Thu Dec 26 2024(Updated: )
A vulnerability was found in code-projects Simple Admin Panel 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file addSizeController.php. The manipulation of the argument size leads to cross site scripting. The attack can be launched remotely.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Code-Projects Simple Admin Panel | ||
| Code-Projects Simple Admin Panel | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-12932?
CVE-2024-12932 has been declared as problematic due to its potential for cross-site scripting attacks.
How do I fix CVE-2024-12932?
To fix CVE-2024-12932, you should sanitize and validate user input within the addSizeController.php file to prevent injection attacks.
What software is affected by CVE-2024-12932?
CVE-2024-12932 affects the Code-Projects Simple Admin Panel version 1.0.
What type of vulnerability is CVE-2024-12932?
CVE-2024-12932 is classified as a cross-site scripting (XSS) vulnerability.
Can CVE-2024-12932 be exploited remotely?
Yes, CVE-2024-12932 can be exploited remotely if an attacker can manipulate the size argument in a web request.
- agent/weakness
- agent/title
- agent/type
- agent/description
- agent/first-publish-date
- agent/author
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/source
- agent/guess-ai
- agent/software-canonical-lookup
- collector/nvd-api
- source/NVD
- agent/last-modified-date
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/event
- vendor/code-projects
- canonical/code-projects simple admin panel
- version/code-projects simple admin panel/1.0