Lucene search

K

MitreCVELIST:CVE-2020-28129

HistoryNov 17, 2020 - 8:15 p.m.

CVE-2020-28129

2020-11-1720:15:30

mitre

www.cve.org

3

cross-site scripting

stored

gym management system

cve-2020-28129

EPSS

0.001

Percentile

51.0%

Stored Cross-site scripting (XSS) vulnerability in SourceCodester Gym Management System 1.0 allows users to inject and store arbitrary JavaScript code in index.php?page=packages via vulnerable fields ‘Package Name’ and ‘Description’.

References

www.exploit-db.com/exploits/48941

www.sourcecodester.com/php/14541/gym-management-system-using-phpmysqli-source-code.html

EPSS

0.001

Percentile

51.0%

Related for CVELIST:CVE-2020-28129

cve1 prion1 nvd1