CVE-2024-2270

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Mar 7, 2024

Updated: May 17, 2024

CWE ID 125

Summary

CVE-2024-2270 is a recently disclosed vulnerability affecting the Keerti1924 Online-Book-Store-Website 1.0. This issue, rated as problematic, impacts an unspecified functionality within the file /signup.php. The vulnerability is classified as Cross-Site Scripting (XSS), allowing attackers to inject malicious scripts into unsuspecting users' browsers. The exploit can be launched remotely and public disclosure increases the risk of exploitation. The vendor was notified but did not respond, leaving users exposed to potential attacks. (VDB-256040)

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uGxdE6
https://www.cve.org/CVERecord?id=CVE-2024-2270
https://nvd.nist.gov/vuln/detail/CVE-2024-2270

Back to Vulnerability Database

CVE-2024-2270

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations