Описание
Cross-site scripting (XSS) vulnerability in smumdadotcom_ascyb_alumni/mod.php in SchoolAlumni Portal 2.26 allows remote attackers to inject arbitrary web script or HTML via the query parameter in a search operation in the katalog module. NOTE: some of these details are obtained from third party information.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:schoolalumni_portal:schoolalumni_portal:2.26:*:*:*:*:*:*:*
EPSS
Процентиль: 57%
0.00353
Низкий
5.1 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Cross-site scripting (XSS) vulnerability in smumdadotcom_ascyb_alumni/mod.php in SchoolAlumni Portal 2.26 allows remote attackers to inject arbitrary web script or HTML via the query parameter in a search operation in the katalog module. NOTE: some of these details are obtained from third party information.
EPSS
Процентиль: 57%
0.00353
Низкий
5.1 Medium
CVSS2
Дефекты
NVD-CWE-Other