Описание
RosarioSIS XSS Vulnerability
Reflected Cross-site scripting (XSS) vulnerability in RosarioSIS 8.2.1 allows attackers to inject arbitrary HTML via the search_term parameter in the modules/Scheduling/Courses.php script.
Пакеты
Наименование
francoisjacquet/rosariosis
composer
Затронутые версииВерсия исправления
<= 8.2.1
8.3
Связанные уязвимости
CVSS3: 6.1
nvd
больше 3 лет назад
Reflected Cross-site scripting (XSS) vulnerability in RosarioSIS 8.2.1 allows attackers to inject arbitrary HTML via the search_term parameter in the modules/Scheduling/Courses.php script.