exploitDog

GHSA-96mc-c729-8jqq

Опубликовано: 15 нояб. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 4.8

Описание

Cross Site Scripting (XSS) vulnerability in profile.php in phpgurukul Teacher Subject Allocation Management System 1.0 allows attackers to run arbitrary code via the 'adminname' and 'email' parameters.

Cross Site Scripting (XSS) vulnerability in profile.php in phpgurukul Teacher Subject Allocation Management System 1.0 allows attackers to run arbitrary code via the 'adminname' and 'email' parameters.

Ссылки

EPSS

Процентиль: 35%

0.00144

Низкий

4.8 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-46026

CVSS3: 4.8

nvd

около 2 лет назад

Cross Site Scripting (XSS) vulnerability in profile.php in phpgurukul Teacher Subject Allocation Management System 1.0 allows attackers to run arbitrary code via the 'adminname' and 'email' parameters.

EPSS

Процентиль: 35%

0.00144

Низкий

4.8 Medium

CVSS3

CVE ID

Дефекты

CWE-79