{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2024-10192","assignerOrgId":"1af790b2-7ee1-4545-860a-a788eba489b5","state":"PUBLISHED","assignerShortName":"VulDB","dateReserved":"2024-10-19T07:24:58.235Z","datePublished":"2024-10-20T07:00:07.825Z","dateUpdated":"2024-10-21T18:02:38.373Z"},"containers":{"cna":{"providerMetadata":{"orgId":"1af790b2-7ee1-4545-860a-a788eba489b5","shortName":"VulDB","dateUpdated":"2024-10-20T07:00:07.825Z"},"title":"PHPGurukul IFSC Code Finder Project search.php cross site scripting","problemTypes":[{"descriptions":[{"type":"CWE","cweId":"CWE-79","lang":"en","description":"Cross Site Scripting"}]}],"affected":[{"vendor":"PHPGurukul","product":"IFSC Code Finder Project","versions":[{"version":"1.0","status":"affected"}]}],"descriptions":[{"lang":"en","value":"A vulnerability has been found in PHPGurukul IFSC Code Finder Project 1.0 and classified as problematic. This vulnerability affects unknown code of the file search.php. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used."},{"lang":"de","value":"In PHPGurukul IFSC Code Finder Project 1.0 wurde eine problematische Schwachstelle gefunden. Das betrifft eine unbekannte Funktionalität der Datei search.php. Durch Manipulation mit unbekannten Daten kann eine cross site scripting-Schwachstelle ausgenutzt werden. Der Angriff kann über das Netzwerk angegangen werden. Der Exploit steht zur öffentlichen Verfügung."}],"metrics":[{"cvssV4_0":{"version":"4.0","baseScore":5.3,"vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N","baseSeverity":"MEDIUM"}},{"cvssV3_1":{"version":"3.1","baseScore":3.5,"vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N","baseSeverity":"LOW"}},{"cvssV3_0":{"version":"3.0","baseScore":3.5,"vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N","baseSeverity":"LOW"}},{"cvssV2_0":{"version":"2.0","baseScore":4,"vectorString":"AV:N/AC:L/Au:S/C:N/I:P/A:N"}}],"timeline":[{"time":"2024-10-19T00:00:00.000Z","lang":"en","value":"Advisory disclosed"},{"time":"2024-10-19T02:00:00.000Z","lang":"en","value":"VulDB entry created"},{"time":"2024-10-19T09:30:04.000Z","lang":"en","value":"VulDB entry last update"}],"credits":[{"lang":"en","value":"jadu101 (VulDB User)","type":"reporter"}],"references":[{"url":"https://vuldb.com/?id.280966","name":"VDB-280966 | PHPGurukul IFSC Code Finder Project search.php cross site scripting","tags":["vdb-entry"]},{"url":"https://vuldb.com/?ctiid.280966","name":"VDB-280966 | CTI Indicators (IOB, IOC, TTP, IOA)","tags":["signature","permissions-required"]},{"url":"https://vuldb.com/?submit.426759","name":"Submit #426759 | PHPGurukul IFSC Code Finder 1.0 Cross Site Scripting","tags":["third-party-advisory"]},{"url":"https://github.com/jadu101/CVE/blob/main/phpgurukul_ifsc_code_finder_search_xss.md","tags":["exploit"]},{"url":"https://phpgurukul.com/","tags":["product"]}]},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2024-10-21T18:02:22.199829Z","id":"CVE-2024-10192","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-10-21T18:02:38.373Z"}}]}}