CVE-2024-13069
CVSS 3.1 Score 3.5 of 10 (low)
Details
Published Dec 31, 2024
CWE ID 94
CWE ID 79
Summary
CVE-2024-13069 is a newly disclosed vulnerability affecting the SourceCodester Multi Role Login System version 1.0. This issue, classified as problematic, resides in an unknown function of the /endpoint/add-user.php file. An attacker can manipulate argument names, leading to cross-site scripting (XSS) attacks. The vulnerability permits remote exploitation, increasing the risk for potential data breaches or unauthorized access. As the exploit has been made public, it is crucial for users to apply the necessary patches or updates to mitigate this threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share