WRITEUP

WRITEUP
Exploit for CVE-2024-5136 - PHPGurukul Directory Management System 1.0 - XSS
AI Analysis

This writeup details a stored XSS vulnerability in Directory Management System 1.0, where user input in the search bar is not properly sanitized, allowing arbitrary JavaScript execution. The PoC demonstrates triggering the XSS via a crafted payload in the search functionality.

Attack Type
XSS
Complexity
trivial
Reliability
reliable
MITRE ATT&CK
T1059.007 - JavaScript
Loading exploit code...
Download ZIP Password: eip
Source
Platform Writeup
Type poc
Files 3
Authors
Burak Sevben
Vulnerability
CVE-2024-5136
PHPGurukul Directory Management System 1.0 - XSS
LOW
CVSS 2.4