Описание
In Sourcecodester School Task Manager v1.0, a vulnerability was identified within the subject_name= parameter, enabling Stored Cross-Site Scripting (XSS) attacks. This vulnerability allows attackers to manipulate the subject's name, potentially leading to the execution of malicious JavaScript payloads.
Ссылки
- Broken Link
- Product
- Broken Link
- Product
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:remyandrade:school_task_manager:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 72%
0.00707
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
CWE-79
Связанные уязвимости
CVSS3: 6.1
github
больше 1 года назад
In Sourcecodester School Task Manager v1.0, a vulnerability was identified within the subject_name= parameter, enabling Stored Cross-Site Scripting (XSS) attacks. This vulnerability allows attackers to manipulate the subject's name, potentially leading to the execution of malicious JavaScript payloads.
EPSS
Процентиль: 72%
0.00707
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
CWE-79