A vulnerability classified as problematic has been found in SourceCodester School Fees Payment System 1.0. This affects an unknown part of the file /ajax.php. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-272583.

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction Required

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction Required

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:L/Au:N/C:N/I:P/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Oretnom23
  • School Fees Payment System

Configuration 1 [-]

cpe:2.3:a:oretnom23:school_fees_payment_system:1.0:*:*:*:*:*:*:*

No data.

References
Link Providers
https://gist.github.com/topsky979/421c916be6ab09dc990896b07185ec89 cve-icon cve-icon cve-icon
https://vuldb.com/?ctiid.272583 cve-icon cve-icon cve-icon
https://vuldb.com/?id.272583 cve-icon cve-icon cve-icon
https://vuldb.com/?submit.380185 cve-icon cve-icon cve-icon
History

Mon, 12 Aug 2024 15:00:00 +0000

Type Values Removed Values Added
First Time appeared Oretnom23
Oretnom23 school Fees Payment System
CPEs cpe:2.3:a:oretnom23:school_fees_payment_system:1.0:*:*:*:*:*:*:*
Vendors & Products Oretnom23
Oretnom23 school Fees Payment System
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2024-07-28T19:31:04.558Z

Updated: 2024-08-01T21:52:30.821Z

Reserved: 2024-07-27T20:19:08.670Z

Link: CVE-2024-7169

cve-icon Vulnrichment

Updated: 2024-08-01T21:52:30.821Z

cve-icon NVD

Status : Modified

Published: 2024-07-28T20:15:01.903

Modified: 2024-11-21T09:50:59.833

Link: CVE-2024-7169

cve-icon Redhat

No data.