sahildari/cve

Releases0

This repository serves as a public resource for sharing comprehensive advisories regarding Common Vulnerabilities and Exposures (CVE).

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-31502 ↗	Apr 26, 2024Friday, 26 April 2024, 21:15	8.1 HIGH	—
An issue in Insurance Management System v.1.0.0 and before allows a remote attacker to escalate privileges via a crafted POST request to /admin/core/new_staff.
CVE-2024-31063 ↗	Mar 28, 2024Thursday, 28 March 2024, 19:15	6.4 MEDIUM	—
Cross Site Scripting vulnerability in Insurance Mangement System v.1.0.0 and before allows a remote attacker to execute arbitrary code via the Email input field.
CVE-2024-31064 ↗	Mar 28, 2024Thursday, 28 March 2024, 19:15	6.1 MEDIUM	—
Cross Site Scripting vulnerability in Insurance Mangement System v.1.0.0 and before allows a remote attacker to execute arbitrary code via the First Name input field.
CVE-2024-31065 ↗	Mar 28, 2024Thursday, 28 March 2024, 19:15	6.1 MEDIUM	—
Cross Site Scripting vulnerability in Insurance Mangement System v.1.0.0 and before allows a remote attacker to execute arbitrary code via the City input field.
CVE-2024-31061 ↗	Mar 28, 2024Thursday, 28 March 2024, 19:15	6.1 MEDIUM	—
Cross Site Scripting vulnerability in Insurance Mangement System v.1.0.0 and before allows a remote attacker to execute arbitrary code via the Last Name input field.
CVE-2024-31062 ↗	Mar 28, 2024Thursday, 28 March 2024, 19:15	6.3 MEDIUM	—
Cross Site Scripting vulnerability in Insurance Mangement System v.1.0.0 and before allows a remote attacker to execute arbitrary code via the Street input field.