CVE-2024-40069 Information

Description

Sourcecodester Online ID Generator System 1.0 was discovered to contain Stored Cross Site Scripting (XSS) via id_generator/classes/Users.php?f=save and the point of vulnerability is in the POST parameter ‘firstname’ and ’lastname’.

Reference

https://github.com/DiliLearngent/BugReport/blob/main/php/Online-ID-Generator-System/bug7-XSS-firstname-lastname.md