Описание
Cross Site Scripting vulnerability in /php-lms/classes/Users.php?f=save in Computer Laboratory Management System using PHP and MySQL 1.0 allow remote attackers to inject arbitrary web script or HTML via the firstname, middlename, lastname parameters.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:oretnom23:computer_laboratory_management_system:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 78%
0.0115
Низкий
7.3 High
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 7.3
github
больше 1 года назад
Cross Site Scripting vulnerability in /php-lms/classes/Users.php?f=save in Computer Laboratory Management System using PHP and MySQL 1.0 allow remote attackers to inject arbitrary web script or HTML via the firstname, middlename, lastname parameters.
EPSS
Процентиль: 78%
0.0115
Низкий
7.3 High
CVSS3
Дефекты
CWE-79