CVE-2024-3086

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Mar 30, 2024
Updated: May 17, 2024
CWE ID 89

Summary

CVE-2024-3086 is a newly disclosed vulnerability affecting the PHPGurukul Emergency Ambulance Hiring Portal 1.0. This issue lies within the Ambulance Tracking Page's ambulance-tracking.php component. The vulnerability stems from an unknown functionality, allowing an attacker to exploit cross-site scripting (XSS) by manipulating the searchdata argument. The exploit can be executed remotely, and the public disclosure increases the risk of attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share