exploitDog

GHSA-38w9-w6h5-wfxm

Опубликовано: 04 нояб. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

Cross Site Scripting vulnerability in addcategory.php in projectworld's Travel Management System v1.0 allows remote attacker to inject arbitrary code via the t2 parameter.

Cross Site Scripting vulnerability in addcategory.php in projectworld's Travel Management System v1.0 allows remote attacker to inject arbitrary code via the t2 parameter.

Ссылки

EPSS

Процентиль: 38%

0.00171

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2024-51328

CVSS3: 6.1

nvd

больше 1 года назад

Cross Site Scripting vulnerability in addcategory.php in projectworld's Travel Management System v1.0 allows remote attacker to inject arbitrary code via the t2 parameter.

EPSS

Процентиль: 38%

0.00171

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79