Описание
SourceCodester Best Employee Management System V1.0 is vulnerable to Cross Site Scripting (XSS) in /admin/profile.php via the website_image, fname, lname, contact, username, and address parameters.
Ссылки
- ExploitThird Party Advisory
- Product
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:mayurik:best_employee_management_system:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 9%
0.00031
Низкий
4.8 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 4.8
github
9 месяцев назад
SourceCodester Best Employee Management System V1.0 is vulnerable to Cross Site Scripting (XSS) in /admin/profile.php via the website_image, fname, lname, contact, username, and address parameters.
EPSS
Процентиль: 9%
0.00031
Низкий
4.8 Medium
CVSS3
Дефекты
CWE-79