Описание
A Stored Cross Site Scripting (XSS) vulnerability was found in "/music/ajax.php?action=save_playlist" in Kashipara Music Management System v1.0. This vulnerability allows remote attackers to execute arbitrary code via "title" & "description" parameter fields.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:lopalopa:music_management_system:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 59%
0.00384
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 6.1
github
больше 1 года назад
A Stored Cross Site Scripting (XSS) vulnerability was found in "/music/ajax.php?action=save_playlist" in Kashipara Music Management System v1.0. This vulnerability allows remote attackers to execute arbitrary code via "title" & "description" parameter fields.
EPSS
Процентиль: 59%
0.00384
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79