Описание
A vulnerability has been discovered in Diño Physics School Assistant version 2.3. This vulnerability impacts unidentified code within the file /classes/SystemSettings.php?f=update_settings. Manipulating the parameter name results in cross-site scripting.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:dino_physics_school_assistant_project:dino_physics_school_assistant:2.3:*:*:*:*:*:*:*
EPSS
Процентиль: 55%
0.00329
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79
EPSS
Процентиль: 55%
0.00329
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79