CVE-2024-13033
LOWcode-projects Chat System 1.0 - XSS
Title source: llmDescription
A vulnerability, which was classified as problematic, has been found in code-projects Chat System 1.0. Affected by this issue is some unknown functionality of the file /admin/chatroom.php. The manipulation of the argument id leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Scores
CVSS v3
3.5
EPSS
0.0013
EPSS Percentile
31.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
Classification
CWE
CWE-94
CWE-79
Status
published
Affected Products (1)
code-projects/chat_system
Timeline
Published
Dec 30, 2024
Tracked Since
Feb 18, 2026