VYPR
leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-249502 is the identifier assigned to this vulnerability.","additionalType":"https://schema.org/SoftwareApplication","sameAs":["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0189"]},"keywords":"CVE-2024-0189, Low, RRJ Nueva Ecija Engineer Online Portal RRJ Nueva Ecija Engineer Online Portal, RRJ Nueva Ecija Engineer Online Portal","mentions":[{"@type":"SoftwareApplication","name":"RRJ Nueva Ecija Engineer Online Portal","applicationCategory":"SecurityApplication","publisher":{"@type":"Organization","name":"RRJ Nueva Ecija Engineer Online Portal"}},{"@type":"SoftwareApplication","name":"Nueva Ecija Engineer Online Portal","applicationCategory":"SecurityApplication","publisher":{"@type":"Organization","name":"RRJ"}}],"isAccessibleForFree":true},{"@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://portal.vyprsec.ai/"},{"@type":"ListItem","position":2,"name":"CVEs","item":"https://portal.vyprsec.ai/cves"},{"@type":"ListItem","position":3,"name":"CVE-2024-0189","item":"https://portal.vyprsec.ai/cves/CVE-2024-0189"}]}]}
Low severity3.5NVD Advisory· Published Jan 2, 2024· Updated Jun 17, 2026

CVE-2024-0189

CVE-2024-0189

Description

A vulnerability has been found in RRJ Nueva Ecija Engineer Online Portal 1.0 and classified as problematic. This vulnerability affects unknown code of the file teacher_message.php of the component Create Message Handler. The manipulation of the argument Content with the input leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-249502 is the identifier assigned to this vulnerability.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.