Medium severity5.4NVD Advisory· Published Apr 9, 2024· Updated Jun 17, 2026
CVE-2024-31544
CVE-2024-31544
Description
A stored cross-site scripting (XSS) vulnerability in Computer Laboratory Management System v1.0 allows attackers to execute arbitrary JavaScript code by including malicious payloads into “remarks”, “borrower_name”, “faculty_department” parameters in /classes/Master.php?f=save_record.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Computer Laboratory Management System/Computer Laboratory Management Systemdescription
- Range: = 1.0
Patches
Vulnerability mechanics
References
1- github.com/emirhanmtl/vuln-research/blob/main/Stored-XSS-Computer-Laboratory-Management-System-PoC.mdnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.