VYPR
Unrated severityNVD Advisory· Published Aug 6, 2024· Updated Aug 6, 2024

Cross-Site Scripting (XSS) vulnerability in Janobe products

CVE-2024-33986

Description

Cross-Site Scripting (XSS) vulnerability in School Attendance Monitoring System and School Event Management System affecting version 1.0. An attacker could create a specially crafted URL and send it to a victim to obtain details of their session cookie via the 'View' parameter in '/department/index.php'.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.