Описание
A vulnerability was found in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/update_user.php of the component Update User Page. Performing manipulation results in cross site scripting. The attack may be initiated remotely. The exploit has been made public and could be used.
Ссылки
- Product
- ExploitIssue TrackingThird Party Advisory
- Permissions RequiredVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:fabian:student_file_management_system:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 8%
0.00031
Низкий
2.4 Low
CVSS3
5.4 Medium
CVSS3
3.3 Low
CVSS2
Дефекты
CWE-79
CWE-79
Связанные уязвимости
CVSS3: 2.4
github
около 2 месяцев назад
A vulnerability was found in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/update_user.php of the component Update User Page. Performing manipulation results in cross site scripting. The attack may be initiated remotely. The exploit has been made public and could be used.
EPSS
Процентиль: 8%
0.00031
Низкий
2.4 Low
CVSS3
5.4 Medium
CVSS3
3.3 Low
CVSS2
Дефекты
CWE-79
CWE-79