CVE-2024-8151

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Aug 25, 2024
Updated: Aug 26, 2024
CWE ID 79

Summary

CVE-2024-8151 is a vulnerability affecting SourceCodester Interactive Map with Marker version 1.0, specifically within the file located at /endpoint/delete-mark.php. This vulnerability allows for cross-site scripting (XSS) via manipulation of the argument "mark," which can be exploited remotely, posing a potential threat to organizations using this software. The attack complexity is low, requiring minimal privileges and user interaction, which increases the likelihood of exploitation. To remediate this issue, users are advised to sanitize input in web applications or implement additional security measures to prevent XSS attacks. The vulnerability has been publicly disclosed, raising concerns regarding its potential exploitation in live environments.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share