Описание
A vulnerability was found in College Website Management System 1.0 and classified as problematic. Affected by this issue is the file /cwms/classes/Master.php?f=save_contact of the component Contact Handler. The manipulation leads to persistent cross site scripting. The attack may be launched remotely and requires authentication.
Ссылки
- Permissions RequiredThird Party Advisory
- Broken LinkProduct
- Permissions RequiredThird Party Advisory
- Broken LinkProduct
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:college_website_management_system_project:college_website_management_system:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 40%
0.00185
Низкий
3.5 Low
CVSS3
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79
CWE-79
Связанные уязвимости
CVSS3: 5.4
github
почти 4 года назад
A vulnerability was found in College Website Management System 1.0 and classified as problematic. Affected by this issue is the file /cwms/classes/Master.php?f=save_contact of the component Contact Handler. The manipulation leads to persistent cross site scripting. The attack may be launched remotely and requires authentication.
EPSS
Процентиль: 40%
0.00185
Низкий
3.5 Low
CVSS3
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79
CWE-79