CVE-2024-26472

Published
View on NVD ↗
CVSS v3
6.1
MEDIUM
CVSS v2
N/A
Affected
2
PROJECTS

Description

KLiK SocialMediaWebsite version 1.0.1 from msaad1999 has a reflected cross-site scripting (XSS) vulnerability which may allow remote attackers to execute arbitrary JavaScript in the web browser of a user, by including a malicious payload into the 'selector' or 'validator' parameters of 'create-new-pwd.php'.

msaad1999/KLiK-SocialMediaWebsite
msaad1999/KLiK-SocialMediaWebsite
Complete PHP-based Login/Registration system, Profile system, Chat room, Forum system and Blog/Polls/Event Management System.
GitHubGitHub
378
dub-flow/vulnerability-research
dub-flow/vulnerability-research
This repository contains information on the CVEs I found.
GitHubGitHub
53