CVE-2024-57686 Information

Jan 11, 2025 cve

Description

A Cross Site Scripting (XSS) vulnerability was found in /landrecordsys/admin/contactus.php in PHPGurukul Land Record System v1.0 which allows remote attackers to execute arbitrary code via the \pagetitle\ parameter.

Reference

https://github.com/Santoshcyber1/CVE-wirteup/blob/main/Phpgurukul/Land%20record/Reflected%20Cross%20Site%20Scripting.pdf

Share on: