5 matches found
CVE-2024-3138
DISPUTED A vulnerability was found in francoisjacquet RosarioSIS 11.5.1. It has been rated as problematic. This issue affects some unknown processing of the component Add Portal Note. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been...
Cross Site Scripting (XSS)
francoisjacquet/rosariosis is vulnerable to Cross Site Scripting. The vulnerability is due to improper handling of input in the component Add Portal Note, leading to the execution of arbitrary JavaScript code...
CVE-2024-3138 francoisjacquet RosarioSIS Add Portal Note cross site scripting
DISPUTED A vulnerability was found in francoisjacquet RosarioSIS 11.5.1. It has been rated as problematic. This issue affects some unknown processing of the component Add Portal Note. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been...
RosarioSIS 跨站脚本漏洞
RosarioSIS is a free and open source student information system. It is used to manage students, create reports and make sound decisions. A cross-site scripting vulnerability exists in RosarioSIS version 11.5.1, which stems from the inclusion of some unknown processing in the component Add Portal...
PT-2024-24026 · Francoisjacquet · Rosariosis
Name of the Vulnerable Software and Affected Versions: francoisjacquet RosarioSIS version 11.5.1 Description: A disputed issue affects the Add Portal Note component, leading to cross-site scripting. The attack can be initiated remotely. The vendor notes that the PDF is opened by the browser app i...