Lucene search
+L

7 matches found

Exploit DB
Exploit DB
added 2021/09/29 12:0 a.m.190 views

OpenSIS 8.0 - 'cp_id_miss_attn' Reflected Cross-Site Scripting (XSS)

Exploit Title: OpenSIS 8.0 - 'cpidmissattn' Reflected Cross-Site Scripting XSS Date: 9/24/2021 Exploit Author: Eric Salario Vendor Homepage: http://www.os4ed.com/ Software Link: https://opensis.com/download Version: 8.0 Tested on: Windows, Linux CVE : CVE-2021-40310 OpenSIS Community Edition...

5.4CVSS5.5AI score0.00839EPSS
Exploits4
NVD
NVD
added 2021/09/24 4:15 p.m.13 views

CVE-2021-40310

OpenSIS Community Edition version 8.0 is affected by a cross-site scripting XSS vulnerability in the TakeAttendance.php via the cpidmissattn parameter...

5.4CVSS0.00839EPSS
Exploits4References3
Prion
Prion
added 2021/09/24 4:15 p.m.15 views

Cross site scripting

OpenSIS Community Edition version 8.0 is affected by a cross-site scripting XSS vulnerability in the TakeAttendance.php via the cpidmissattn parameter...

3.5CVSS5.3AI score0.00839EPSS
Exploits4References3Affected Software1
Cvelist
Cvelist
added 2021/09/24 3:7 p.m.23 views

CVE-2021-40310

OpenSIS Community Edition version 8.0 is affected by a cross-site scripting XSS vulnerability in the TakeAttendance.php via the cpidmissattn parameter...

5.5AI score0.00839EPSS
Exploits4References3
CVE
CVE
added 2021/09/24 3:7 p.m.80 views

CVE-2021-40310

OpenSIS Community Edition 8.0 is affected by a cross-site scripting (XSS) flaw in TakeAttendance.php via the cp_id_miss_attn parameter. The vulnerability context and PoC links are documented across multiple sources (e.g., PacketStorm and Exploit-DB entries), illustrating a reflected XSS payload u...

5.4CVSS5.2AI score0.00839EPSS
Exploits4References3Affected Software1
CNNVD
CNNVD
added 2021/09/24 12:0 a.m.5 views

OS4Ed OpenSIS SQL注入漏洞

openSIS is a free and open source student information system/school management software. openSIS version 8.0 has a SQL injection vulnerability in the cpidmissattn parameter in TakeAttendance.php. An attacker can exploit this vulnerability to inject SQL queries...

8.8CVSS8.1AI score0.01822EPSS
Exploits1References4
CNNVD
CNNVD
added 2021/09/24 12:0 a.m.3 views

OpenSIS 跨站脚本漏洞

Open Solutions For Education openSIS is an open source student information management system from Open Solutions for Education Open Solutions For Education, a US company. A cross-site scripting vulnerability exists in OpenSIS Community Edition version 8.0, which stems from a lack of validation an...

5.4CVSS5.4AI score0.00839EPSS
Exploits4References4
Rows per page
Query Builder