CVE-2024-9083: SourceCodester Employee Management System add-admin.php cross site scripting
First published: Sun Sep 22 2024(Updated: )
A vulnerability classified as problematic has been found in SourceCodester Employee Management System 1.0. This affects an unknown part of the file /Admin/add-admin.php. The manipulation of the argument txtfullname leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Employee Management System | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-9083?
CVE-2024-9083 is classified as a problematic vulnerability.
How do I fix CVE-2024-9083?
To mitigate CVE-2024-9083, sanitize and validate user inputs to prevent cross-site scripting attacks.
What component is affected by CVE-2024-9083?
CVE-2024-9083 affects the /Admin/add-admin.php file of the SourceCodester Employee Management System 1.0.
What kind of vulnerability is CVE-2024-9083?
CVE-2024-9083 is a cross-site scripting (XSS) vulnerability.
Who is affected by CVE-2024-9083?
Users of the Razormist Employee Management System version 1.0 are affected by CVE-2024-9083.
- agent/title
- agent/weakness
- agent/references
- agent/description
- agent/first-publish-date
- agent/type
- agent/author
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/softwarecombine
- agent/trending
- collector/epss-latest
- source/FIRST
- agent/epss
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/razormist
- canonical/employee management system
- version/employee management system/1.0