CVE-2024-13081: PHPGurukul Land Record System contactus.php cross site scripting
First published: Tue Dec 31 2024(Updated: )
A vulnerability was found in PHPGurukul Land Record System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/contactus.php. The manipulation of the argument Page Description leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| PHPGurukul Land Record System | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-13081?
CVE-2024-13081 has been declared problematic due to its ability to enable cross-site scripting attacks.
How do I fix CVE-2024-13081?
To fix CVE-2024-13081, sanitize and validate the input for the Page Description argument in the /admin/contactus.php file.
What systems are affected by CVE-2024-13081?
CVE-2024-13081 affects PHPGurukul Land Record System version 1.0.
What kind of attack can be executed through CVE-2024-13081?
CVE-2024-13081 allows attackers to execute cross-site scripting attacks by manipulating the Page Description parameter.
Where in the code does CVE-2024-13081 occur?
CVE-2024-13081 occurs in the /admin/contactus.php file of the PHPGurukul Land Record System.
- agent/references
- agent/title
- agent/weakness
- agent/type
- agent/first-publish-date
- agent/description
- agent/author
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- agent/source
- vendor/phpgurukul
- canonical/phpgurukul land record system
- version/phpgurukul land record system/1.0