CVE-2024-13021: SourceCodester Road Accident Map Marker add-mark.php cross site scripting
First published: Sun Dec 29 2024(Updated: )
A vulnerability, which was classified as problematic, has been found in SourceCodester Road Accident Map Marker 1.0. Affected by this issue is some unknown functionality of the file /endpoint/add-mark.php. The manipulation of the argument mark_name/details leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SourceCodester Road Accident Map Marker | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-13021?
CVE-2024-13021 is classified as a problematic vulnerability affecting SourceCodester Road Accident Map Marker 1.0.
How do I fix CVE-2024-13021?
To fix CVE-2024-13021, validate and sanitize inputs for the mark_name/details arguments in the /endpoint/add-mark.php file.
Which software is affected by CVE-2024-13021?
The affected software for CVE-2024-13021 is SourceCodester Road Accident Map Marker version 1.0.
What type of vulnerability is CVE-2024-13021?
CVE-2024-13021 is a cross-site scripting (XSS) vulnerability.
Where is CVE-2024-13021 located in the software?
CVE-2024-13021 is located in the /endpoint/add-mark.php file of the software.
- agent/title
- agent/weakness
- agent/references
- agent/type
- agent/first-publish-date
- agent/severity
- agent/author
- agent/event
- agent/source
- collector/mitre-cve
- source/MITRE
- collector/nvd-api
- source/NVD
- agent/last-modified-date
- agent/description
- agent/tags
- agent/softwarecombine
- agent/guess-ai
- agent/software-canonical-lookup
- vendor/sourcecodester
- canonical/sourcecodester road accident map marker