Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2024-34241

Published: 17/05/2024 Updated: 17/05/2024

Vulnerability Summary

A cross-site scripting (XSS) vulnerability in Rocketsoft Rocket LMS 1.9 allows an administrator to store a JavaScript payload using the admin web interface when creating new courses and new course notifications.

Exploits

Exploit DB: Rocket LMS 1.9 Cross Site Scripting
Rocket LMS version 19 suffers from a persistent cross site scripting vulnerability ...

References

https://grumpz.net/cve-2024-34241-a-step-by-step-discovery-guidehttps://nvd.nist.govhttps://packetstormsecurity.com/files/178629/Rocket-LMS-1.9-Cross-Site-Scripting.html
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypassopen redirectCVE-2024-4358CVE-2024-24199CVE-2024-5550CVE-2024-5305CVE-2024-30373CVE-2024-1800deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook