CVE-2024-50840

MEDIUM Year: 2024
CVSS v3 Score
5.4
Medium
Weakness Type
CWE-120
View all →

Vulnerability Description

A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/class.php in KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to execute arbitrary scripts via the class_name parameter.

Related Vulnerabilities

CVE-2017-14445

MEDIUM
CVSS:5.4(Medium)

An exploitable buffer overflow vulnerability exists in Insteon Hub running firmware version 1012. The HTTP server implementation incorrectly handles the host parameter during a firmware update request...

CWE-1202017

CVE-2024-29507

MEDIUM
CVSS:5.4(Medium)

Artifex Ghostscript before 10.03.0 sometimes has a stack-based buffer overflow via the CIDFSubstPath and CIDFSubstFont parameters.

CWE-1202024

CVE-2024-50838

MEDIUM
CVSS:5.4(Medium)

A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/department.php in KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to execute arbitr...

CWE-1202024

CVE-2024-50839

MEDIUM
CVSS:5.4(Medium)

A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/add_subject.php in KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to execute arbit...

CWE-1202024

CVE-2025-29632

MEDIUM
CVSS:5.4(Medium)

Buffer Overflow vulnerability in Free5gc v.4.0.0 allows a remote attacker to cause a denial of service via the AMF, NGAP, security.go, handler_generated.go, handleInitialUEMessageMain, DecodePlainNasN...

CWE-1202025

CVE-2025-44175

MEDIUM
CVSS:5.4(Medium)

Tenda AC10 v4 V16.03.10.13 is vulnerable to Buffer Overflow in the GetParentControlInfo function.

CWE-1202025