Lucene search
China National Vulnerability DatabaseCNVD-2022-88821HistorySep 28, 2022 - 12:00 a.m.
Academy Learning Management System Reflective Cross-Site Scripting Vulnerability
2022-09-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
academy learning management system
reflective cross-site scripting
vulnerability
filtering
escaping
search parameter
0.002 Low
EPSS
Percentile
59.6%
Academy Learning Management System is an Academy Learning Management System from the Creativeitem team. The vulnerability is caused by the lack of effective filtering and escaping of user-supplied data in the Search parameter, which could be exploited to launch a reflective cross-site scripting attack.
| CPE | Name | Operator | Version |
|---|---|---|---|
| creativeitem academy learning management system <v | eq | 5.9.1 |
Related
cve
cve
CVE-2022-38553
2022-09-26 10:15:09
nvd
nvd
CVE-2022-38553
2022-09-26 10:15:09
prion
prion
Cross site scripting
2022-09-26 10:15:00
nuclei
nuclei
Academy Learning Management System <5.9.1 - Cross-Site Scripting
2022-09-29 17:21:28
cvelist
cvelist
CVE-2022-38553
2022-09-26 09:59:06