ГлавнаяУязвимости → CVE-2024-34224
7.3высокая

CVE-2024-34224

Описание

Cross Site Scripting vulnerability in /php-lms/classes/Users.php?f=save in Computer Laboratory Management System using PHP and MySQL 1.0 allow remote attackers to inject arbitrary web script or HTML via the firstname, middlename, lastname parameters.

Затрагиваемое ПО
Oretnom23 Computer laboratory management system
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
Источники
https://github.com/dovankha/CVE-2024-34224https://github.com/dovankha/CVE-2024-34224