Skip to main content

House Rental Management System CVE-2024-1825

MEDIUM
Cross-site Scripting (XSS) (CWE-79)
2024-02-23 cna@vuldb.com
6.1
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
6.1 MEDIUM
AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
None

Lifecycle Timeline

1
CVE Published
Feb 23, 2024 - 17:15 nvd
MEDIUM 6.1

DescriptionNVD

A vulnerability, which was classified as problematic, was found in CodeAstro House Rental Management System 1.0. This affects an unknown part of the component User Registration Page. The manipulation of the argument address with the input <img src="1" onerror="console.log(1)"> leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-254613 was assigned to this vulnerability.

AnalysisAI

A vulnerability, which was classified as problematic, was found in CodeAstro House Rental Management System 1.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Technical ContextAI

This vulnerability is classified as Cross-Site Scripting (XSS) (CWE-79), which allows attackers to inject malicious scripts into web pages viewed by other users. A vulnerability, which was classified as problematic, was found in CodeAstro House Rental Management System 1.0. This affects an unknown part of the component User Registration Page. The manipulation of the argument address with the input <img src="1" onerror="console.log(1)"> leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-254613 was assigned to this vulnerability. Affected products include: Codeastro House Rental Management System.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Sanitize all user input, use Content-Security-Policy headers, encode output contextually (HTML, JS, URL). Use frameworks with built-in XSS protection.

CVE-2024-2917 CRITICAL POC
9.8 Mar 26

A vulnerability was found in Campcodes House Rental Management System 1.0. Rated critical severity (CVSS 9.8), this vuln

CVE-2024-3719 HIGH POC
8.8 Apr 13

A vulnerability, which was classified as critical, was found in Campcodes House Rental Management System 1.0. Rated high

CVE-2024-3698 HIGH POC
8.8 Apr 12

A vulnerability was found in Campcodes House Rental Management System 1.0. Rated high severity (CVSS 8.8), this vulnerab

CVE-2024-3697 HIGH POC
8.8 Apr 12

A vulnerability was found in Campcodes House Rental Management System 1.0. Rated high severity (CVSS 8.8), this vulnerab

CVE-2024-3696 HIGH POC
8.8 Apr 12

A vulnerability was found in Campcodes House Rental Management System 1.0 and classified as critical.php. Rated high sev

CVE-2024-12944 MEDIUM POC
6.9 Dec 26

A vulnerability was found in CodeAstro House Rental Management System 1.0. Rated medium severity (CVSS 6.9), this vulner

CVE-2024-12943 MEDIUM POC
6.9 Dec 26

A vulnerability was found in CodeAstro House Rental Management System 1.0. Rated medium severity (CVSS 6.9), this vulner

CVE-2024-2916 MEDIUM POC
6.5 Mar 26

A vulnerability was found in Campcodes House Rental Management System 1.0. Rated medium severity (CVSS 6.5), this vulner

CVE-2024-1824 CRITICAL
9.8 Feb 23

A vulnerability, which was classified as critical, has been found in CodeAstro House Rental Management System 1.0. Rated

CVE-2024-2076 HIGH
7.5 Mar 01

A vulnerability was found in CodeAstro House Rental Management System 1.0. Rated high severity (CVSS 7.5), this vulnerab

CVE-2024-55000 MEDIUM POC
5.4 Jan 14

Sourcecodester House Rental Management system v1.0 is vulnerable to Cross Site Scripting (XSS) in rental/manage_categori

CVE-2024-0502 MEDIUM POC
4.7 Jan 13

A vulnerability was found in SourceCodester House Rental Management System 1.0 and classified as critical. Rated medium

Share

CVE-2024-1825 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy