Home

Description

Cross Site Scripting vulnerability in /php-lms/classes/Users.php?f=save in Computer Laboratory Management System using PHP and MySQL 1.0 allow remote attackers to inject arbitrary web script or HTML via the firstname, middlename, lastname parameters.

PUBLISHED Reserved 2024-05-02 | Published 2024-05-13 | Updated 2025-02-13 | Assigner mitre

References

github.com/dovankha/CVE-2024-34224

cve.org (CVE-2024-34224)

nvd.nist.gov (CVE-2024-34224)

Download JSON