Lucene search
PRIOn knowledge basePRION:CVE-2020-28071HistoryDec 23, 2020 - 6:15 p.m.
Cross site scripting
2020-12-2318:15:00
PRIOn knowledge base
www.prio-n.com
4
0.001 Low
EPSS
Percentile
19.8%
SourceCodester Alumni Management System 1.0 is affected by cross-site Scripting (XSS) in /admin/gallery.php. After the admin authentication an attacker can upload an image in the gallery using a XSS payload in the description textarea called ‘about’ and reach a stored XSS.
| CPE | Name | Operator | Version |
|---|---|---|---|
| alumni_management_system | eq | 1.0 |
Related
nvd
nvd
CVE-2020-28071
2020-12-23 18:15:12
cve
cve
CVE-2020-28071
2020-12-23 18:15:12
cvelist
cvelist
CVE-2020-28071
2020-12-23 17:54:20
packetstorm
packetstorm
Alumni Management System 1.0 Cross Site Scripting
2020-12-17 00:00:00