AI Score
Confidence
High
EPSS
Percentile
57.6%
Multiple cross-site scripting (XSS) vulnerabilities in Infoproject Biznis Heroj allow remote attackers to inject arbitrary web script or HTML via the config parameter to (1) nalozi_naslov.php and (2) widget.dokumenti_lista.php.
www.exploit-db.com/exploits/18259
www.zeroscience.mk/en/vulnerabilities/ZSL-2011-5064.php
exchange.xforce.ibmcloud.com/vulnerabilities/71928