CVE-2024-41930 - AskarLabs CVE Database

CVE-2024-41930

Vendor Media Fusion Co.,Ltd.

Product MF Teacher Performance Management System

Weakness CWE-79 · XSS

Published September 27, 2024

Last update November 4, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

Cross-site scripting vulnerability exists in MF Teacher Performance Management System version 6. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who accessed the website using the product.

Key dates

02Disclosure timeline

September 27, 2024 CVE published

November 4, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2024-41930

Related vulnerabilities

04Related CVE

CVE-2026-35539 CVE-2025-14275 Jeg Elementor Kit <= 3.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Countdown Widget CVE-2024-33981 Cross-site Scripting in Janobe products CVE-2024-44035 WordPress Gum Elementor Addon plugin <= 1.3.7 - Cross Site Scripting (XSS) vulnerability CVE-2024-29810 WordPress Photo Gallery Plugin <= 1.8.21 Reflected Cross Site Scripting in editimage_bwg thumb_url