CVE-2022-37150

Опубликовано: 26 авг. 2022

Источник: nvd

CVSS3: 5.4

EPSS Низкий

Описание

An issue was discovered in Online Diagnostic Lab Management System 1.0. There is a stored XSS vulnerability via firstname, address, middlename, lastname , gender, email, contact parameters.

Ссылки

https://github.com/Fjowel/CVE-2022-37150
Exploit
Third Party Advisory
https://www.sourcecodester.com/php/15129/online-diagnostic-lab-management-system-php-free-source-code.html
Product
https://github.com/Fjowel/CVE-2022-37150
Exploit
Third Party Advisory
https://www.sourcecodester.com/php/15129/online-diagnostic-lab-management-system-php-free-source-code.html
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:online_diagnostic_lab_management_system_project:online_diagnostic_lab_management_system:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 44%

0.00213

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-w947-m339-3246