CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2024-8151 – SourceCodester Interactive Map with Marker delete-mark.php cross site scripting
https://notcve.org/view.php?id=CVE-2024-8151
A vulnerability was found in SourceCodester Interactive Map with Marker 1.0. It has been classified as problematic. This affects an unknown part of the file /endpoint/delete-mark.php. The manipulation of the argument mark leads to cross site scripting. It is possible to initiate the attack remotely. • https://github.com/jadu101/CVE/blob/main/SourceCodester_Interactive_Map_With_Marker_delete_mark_XSS.md https://vuldb.com/?ctiid.275739 https://vuldb.com/?id.275739 https://vuldb.com/?submit.397570 https://www.sourcecodester.com • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2024-4968 – SourceCodester Interactive Map with Marker Add Marker Marker Name cross site scripting
https://notcve.org/view.php?id=CVE-2024-4968
A vulnerability was found in SourceCodester Interactive Map with Marker 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file Marker Name of the component Add Marker. The manipulation leads to cross site scripting. The attack may be launched remotely. • https://github.com/BurakSevben/CVEs/blob/main/Interactive%20Map%20App/Interactive%20Map%20App%20-%20Cross-Site-Scripting.md https://vuldb.com/?ctiid.264536 https://vuldb.com/?id.264536 https://vuldb.com/?submit.335191 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2024-4967 – SourceCodester Interactive Map with Marker delete-mark.php sql injection
https://notcve.org/view.php?id=CVE-2024-4967
A vulnerability was found in SourceCodester Interactive Map with Marker 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /endpoint/delete-mark.php. The manipulation of the argument mark leads to sql injection. The attack can be launched remotely. • https://github.com/BurakSevben/CVEs/blob/main/Interactive%20Map%20App/Interactive%20Map%20App%20-%20SQL%20Injection.md https://vuldb.com/?ctiid.264535 https://vuldb.com/?id.264535 https://vuldb.com/?submit.335190 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •