exploitDog

GHSA-67qh-xgqw-xxw5

Опубликовано: 15 мая 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

Phpgurukul Vehicle Record Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via the vehiclename, modelnumber, regnumber, vehiclesubtype, chasisnum, enginenumber' in the /admin/edit-vehicle.php component. This allows attackers to execute arbitrary code.

Phpgurukul Vehicle Record Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via the vehiclename, modelnumber, regnumber, vehiclesubtype, chasisnum, enginenumber' in the /admin/edit-vehicle.php component. This allows attackers to execute arbitrary code.

Ссылки

EPSS

Процентиль: 21%

0.00068

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2025-44182

CVSS3: 6.1

nvd

9 месяцев назад

Phpgurukul Vehicle Record Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via the vehiclename, modelnumber, regnumber, vehiclesubtype, chasisnum, enginenumber' in the /admin/edit-vehicle.php component. This allows attackers to execute arbitrary code.

EPSS

Процентиль: 21%

0.00068

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79