CVE-2024-0262

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Published Jan 7, 2024

Updated: May 17, 2024

CWE ID 79

Summary

CVE-2024-0262 is a newly disclosed vulnerability affecting the Online Job Portal 1.0. The vulnerability lies in the Create News Page component's /Admin/News.php file, where manipulating the argument News with the input </title><scRipt>alert(0x0x00C57D)</scRipt> results in cross-site scripting (XSS). This issue may be exploited remotely, making it a significant security risk. The exploit for this vulnerability has been made public, increasing the likelihood of attacks. VDB-249818 is the identifier assigned to this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uDAfpi
https://www.cve.org/CVERecord?id=CVE-2024-0262
https://nvd.nist.gov/vuln/detail/CVE-2024-0262

Back to Vulnerability Database

CVE-2024-0262

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations