CVE

CVE-2024-31063

Date: (C)2024-03-29   (M)2024-05-17

Cross Site Scripting vulnerability in Insurance Mangement System v.1.0.0 and before allows a remote attacker to execute arbitrary code via the Email input field.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V3 Severity:		CVSS V2 Severity:
CVSS Score : 6.1		CVSS Score :
Exploit Score:		Exploit Score:
Impact Score:		Impact Score:
CVSS V3 Metrics:		CVSS V2 Metrics:
Attack Vector:		Access Vector:
Attack Complexity:		Access Complexity:
Privileges Required:		Authentication:
User Interaction:		Confidentiality:
Scope:		Integrity:
Confidentiality:		Availability:
Integrity:
Availability:

Reference:

https://github.com/sahildari/cve/blob/master/CVE-2024-31063.md

https://owasp.org/www-community/attacks/xss/

https://portswigger.net/web-security/cross-site-scripting/stored