drew-byte/Personal-Time-Tracker-V1-POC
GitHub
Releases0
The Personal Time Tracker web application is vulnerable to Reflected Cross-Site Scripting (XSS) in the project name input.
CVE History
| CVE | Published | CVSS v3 | CVSS v2 |
|---|---|---|---|
| 3.5 LOW | 4 MEDIUM | ||
A vulnerability was detected in SourceCodester Time Tracker 1.0. The affected element is an unknown function of the file /index.html. Performing manipulation of the argument project-name results in cross site scripting. The attack may be initiated remotely. The exploit is now public and may be used. | |||