exploitDog

CVE-2024-46336

Опубликовано: 17 нояб. 2025

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

kashipara School Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via /client_user/feedback.php.

Ссылки

https://github.com/leexsoyoung/CVEs/blob/main/CVE-2024-46336.md
Exploit
Third Party Advisory
https://www.kashipara.com/project/php/73/school-management-system-download-project-source-code-in-php
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:kashipara:school_management_system:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 13%

0.00044

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-cr5f-jcrf-5qjf

CVSS3: 6.1

github

3 месяца назад

kashipara School Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via /client_user/feedback.php.

EPSS

Процентиль: 13%

0.00044

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79