Lucene search
MitreCVELIST:CVE-2020-15718HistoryJul 15, 2020 - 7:02 p.m.
CVE-2020-15718
2020-07-1519:02:52
mitre
www.cve.org
0.002 Low
EPSS
Percentile
51.4%
RosarioSIS 6.7.2 is vulnerable to XSS, caused by improper validation of user-supplied input by the PrintSchedules.php script. A remote attacker could exploit this vulnerability using the include_inactive parameter in a crafted URL.
References
exchange.xforce.ibmcloud.com/vulnerabilities/184944
gitlab.com/francoisjacquet/rosariosis/-/blob/mobile/CHANGES.md
gitlab.com/francoisjacquet/rosariosis/-/commit/89ae9de732024e3a2e99262aa98b400a1aa6975a
gitlab.com/francoisjacquet/rosariosis/-/issues/291
gitlab.com/francoisjacquet/rosariosis/-/tags/v6.8-beta
Related
veracode
veracode
Cross-Site Scripting (XSS)
2020-07-16 04:06:17
prion
prion
Input validation
2020-07-15 20:15:00
cve
cve
CVE-2020-15718
2020-07-15 20:15:13
nvd
nvd
CVE-2020-15718
2020-07-15 20:15:13
osv
osv
CVE-2020-15718
2020-07-15 20:15:13