Описание
A vulnerability was found in ZeroWdd studentmanager 1.0. It has been declared as problematic. This vulnerability affects the function submitAddRole of the file src/main/java/com/zero/system/controller/RoleController. java. The manipulation of the argument name leads to cross site scripting. The attack can be initiated remotely.
Ссылки
- ExploitIssue TrackingThird Party Advisory
- Permissions Required
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:zerowdd:studentmanager:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 30%
0.00109
Низкий
2.4 Low
CVSS3
4.8 Medium
CVSS3
3.3 Low
CVSS2
Дефекты
CWE-79
CWE-79
Связанные уязвимости
CVSS3: 2.4
github
около 1 года назад
A vulnerability was found in ZeroWdd studentmanager 1.0. It has been declared as problematic. This vulnerability affects the function submitAddRole of the file src/main/java/com/zero/system/controller/RoleController. java. The manipulation of the argument name leads to cross site scripting. The attack can be initiated remotely.
EPSS
Процентиль: 30%
0.00109
Низкий
2.4 Low
CVSS3
4.8 Medium
CVSS3
3.3 Low
CVSS2
Дефекты
CWE-79
CWE-79