Vulnerability Description
A vulnerability was found in SourceCodester Online Library System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file admin/users/controller.php. The manipulation of the argument user_name leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-259469 was assigned to this vulnerability.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Janobe | Online Library System | 1.0 |
Related Weaknesses (CWE)
References
- https://github.com/thisissuperann/Vul/blob/main/Online-Library-System-07.mdExploitThird Party Advisory
- https://vuldb.com/?ctiid.259469Permissions RequiredVDB Entry
- https://vuldb.com/?id.259469Third Party AdvisoryVDB Entry
- https://vuldb.com/?submit.310432Third Party AdvisoryVDB Entry
- https://github.com/thisissuperann/Vul/blob/main/Online-Library-System-07.mdExploitThird Party Advisory
- https://vuldb.com/?ctiid.259469Permissions RequiredVDB Entry
- https://vuldb.com/?id.259469Third Party AdvisoryVDB Entry
- https://vuldb.com/?submit.310432Third Party AdvisoryVDB Entry
FAQ
What is CVE-2024-3365?
CVE-2024-3365 is a vulnerability with a CVSS score of 3.5 (LOW). A vulnerability was found in SourceCodester Online Library System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file admin/users/controller.php. The manipula...
How severe is CVE-2024-3365?
CVE-2024-3365 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-3365?
Check the references section above for vendor advisories and patch information. Affected products include: Janobe Online Library System.