exploitDog

GHSA-wfm3-g35w-6g75

Опубликовано: 14 мая 2024

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

Cross Site Scripting vulnerability in php-lms/admin/?page=system_info in Computer Laboratory Management System using PHP and MySQL 1.0 allow remote attackers to inject arbitrary web script or HTML via the name, shortname parameters.

Cross Site Scripting vulnerability in php-lms/admin/?page=system_info in Computer Laboratory Management System using PHP and MySQL 1.0 allow remote attackers to inject arbitrary web script or HTML via the name, shortname parameters.

Ссылки

EPSS

Процентиль: 63%

0.00458

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2024-34225

CVSS3: 6.1

nvd

больше 1 года назад

Cross Site Scripting vulnerability in php-lms/admin/?page=system_info in Computer Laboratory Management System using PHP and MySQL 1.0 allow remote attackers to inject arbitrary web script or HTML via the name, shortname parameters.

EPSS

Процентиль: 63%

0.00458

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-94