CVE | CVE-2024-4256 |
CVE Title | |
Published Date | 2024-04-27T16:15Z |
Modified Date | 2024-04-29T12:42Z |
CWE Type | CWE-79 |
Description | A vulnerability was found in Techkshetra Info Solutions Savsoft Quiz 6.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /public/index.php/Qbank/editCategory of the component Category Page. The manipulation of the argument category_name with the input > leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-262148. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. |
References | |
By clicking these links you will leave this website. We do not endorse and will not be held accountable for any activity on external sites. | |
Reference URL | https://vuldb.com/?id.262148 |
Reference Description | VDB-262148 | Techkshetra Info Solutions Savsoft Quiz Category Page editCategory cross site scripting |
Reference URL | https://vuldb.com/?ctiid.262148 |
Reference Description | VDB-262148 | CTI Indicators (IOB, IOC, TTP, IOA) |
Reference URL | https://vuldb.com/?submit.319897 |
Reference Description | Submit #319897 | Techkshetra Info Solutions Savsoft Quiz 6.0 Stored XSS |
Sources | NIST MITRE |
Note
- No CVSS data for this CVE