What is CVE-2024-8604?

CVE-2024-8604 is a medium-severity vulnerability in Sourcecodester Online Food Ordering System, classified under Cross-site Scripting. CVSS score: 4.3/10. Published 2024-09-09.

How severe is CVE-2024-8604?

Medium severity. CVSS v3 base score is 4.3 out of 10.

Is CVE-2024-8604 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

XSS in Sourcecodester Online Food Ordering System

CVE-2024-8604

A vulnerability classified as problematic has been found in SourceCodester Online Food Ordering System 2.0. This affects an unknown part of the file index.php of the component Create an Account Page. The manipulation of the argument First…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.001 (27.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 4.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N.

Affected products

Sourcecodester Online Food Ordering System — versions 2.0

Weakness classification (CWE)

CWE-79 — Cross-site Scripting

Public proof-of-concept exploits

fkie-cad/nvd-json-data-feeds

References

VDB-276831 | SourceCodester Online Food Ordering System Create an Account Page index.php cross site scripting (vdb-entry, technical-description)
VDB-276831 | CTI Indicators (IOB, IOC, TTP, IOA) (signature, permissions-required)
Submit #404660 | SourceCodester Online Food Ordering System v2 2 Cross Site Scripting (third-party-advisory)
www.sourcecodester.com/ (product)

Frequently asked questions

What is CVE-2024-8604?: CVE-2024-8604 is a medium-severity vulnerability in Sourcecodester Online Food Ordering System, classified under Cross-site Scripting. CVSS score: 4.3/10. Published 2024-09-09.
How severe is CVE-2024-8604?: Medium severity. CVSS v3 base score is 4.3 out of 10.
Is CVE-2024-8604 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.