CVE-2024-53481 | THREATINT

Description

A Cross Site Scripting (XSS) vulnerability in the profile.php of PHPGurukul Beauty Parlour Management System v1.1 allows remote attackers to execute arbitrary code by injecting arbitrary HTML into the "Firstname" and "Last name" parameters.

PUBLISHED Reserved 2024-11-20 | Published 2024-12-10 | Updated 2024-12-10 | Assigner mitre

References

phpgurukul.com

github.com/sbksibi/CVEs/blob/main/CVE-2024-53481.md

cve.org (CVE-2024-53481)

nvd.nist.gov (CVE-2024-53481)

Download JSON