CVE-2024-11742 Information

Description

A vulnerability which was classified as problematic has been found in SourceCodester Best House Rental Management System 1.0. This issue affects some unknown processing of the file /rental/ajax.php?action=save_tenant. The manipulation of the argument lastname/firstname/middlename leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

Reference

https://github.com/YasserREED/YasserREED-CVEs/blob/main/Best%20house%20rental%20management%20system%20project%20in%20php/Stored%20Cross-Site%20Scripting%20(XSS).md https://vuldb.com/?ctiid.286139 https://vuldb.com/?id.286139 https://vuldb.com/?submit.449683 https://www.sourcecodester.com/