Описание
Cross Site Scripting vulnerability in php-lms/admin/?page=system_info in Computer Laboratory Management System using PHP and MySQL 1.0 allow remote attackers to inject arbitrary web script or HTML via the name, shortname parameters.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:oretnom23:computer_laboratory_management_system:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 63%
0.00458
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-94
Связанные уязвимости
CVSS3: 6.1
github
больше 1 года назад
Cross Site Scripting vulnerability in php-lms/admin/?page=system_info in Computer Laboratory Management System using PHP and MySQL 1.0 allow remote attackers to inject arbitrary web script or HTML via the name, shortname parameters.
EPSS
Процентиль: 63%
0.00458
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-94