Описание
A vulnerability, which was classified as problematic, was found in code-projects Real Estate Property Management System 1.0. Affected is an unknown function of the file /search.php. The manipulation of the argument PropertyName leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.
Ссылки
- Product
- ExploitThird Party Advisory
- Permissions RequiredVDB Entry
- VDB Entry
- VDB Entry
Уязвимые конфигурации
EPSS
3.5 Low
CVSS3
5.4 Medium
CVSS3
4 Medium
CVSS2
Дефекты
Связанные уязвимости
A vulnerability, which was classified as problematic, was found in code-projects Real Estate Property Management System 1.0. Affected is an unknown function of the file /search.php. The manipulation of the argument PropertyName leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.
Уязвимость сценария search.php системы управления недвижимостью Real Estate Property Management System, позволяющая нарушителю проводить межсайтовые сценарные атаки (XSS)
EPSS
3.5 Low
CVSS3
5.4 Medium
CVSS3
4 Medium
CVSS2