Lucene search
K

5 matches found

Nuclei
Nuclei
added yesterday38 views

Open-School 3.0/Community Edition 2.3 - Cross-Site Scripting

Open-School 3.0, and Community Edition 2.3, allows cross-site scripting via the osv/index.php?r=students/guardians/create id parameter. id: CVE-2019-14696 info: name: Open-School 3.0/Community Edition 2.3 - Cross-Site Scripting author: pikpikcu severity: medium description: Open-School 3.0, and...

6.1CVSS6.4AI score0.15682EPSS
Exploits5References5
0day.today
0day.today
added 2019/08/09 12:0 a.m.48 views

Open-School 3.0 / Community Edition 2.3 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Open-School 3.0 / Community Edition 2.3 - Cross-Site Scripting Vulnerability Exploit Author: Greg.Priest Vendor Homepage: https://open-school.org/ Software Link: Version: Open-School 3.0/Community Edition 2.3 Tested on: Windows/Linux CVE :...

4.3CVSS6.4AI score0.15682EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/08/08 12:0 a.m.129 views

Open-School 3.0 / Community Edition 2.3 - Cross-Site Scripting

Exploit Title: title Date: 2019 08 06 Exploit Author: Greg.Priest Vendor Homepage: https://open-school.org/ Software Link: Version: Open-School 3.0/Community Edition 2.3 Tested on: Windows/Linux CVE : CVE-2019-14696 Open-School 3.0, and Community Edition 2.3, allows XSS via the...

6.1CVSS6.5AI score0.15682EPSS
Exploits5
Packet Storm
Packet Storm
added 2019/08/08 12:0 a.m.95 views

Open-School 3.0 / Community Edition 2.3 Cross Site Scripting

Exploit Title: title Date: 2019 08 06 Exploit Author: Greg.Priest Vendor Homepage: https://open-school.org/ Software Link: Version: Open-School 3.0/Community Edition 2.3 Tested on: Windows/Linux CVE : CVE-2019-14696 Open-School 3.0, and Community Edition 2.3, allows XSS via the...

0.15682EPSS
Exploits5
CVE
CVE
added 2019/08/06 3:38 p.m.91 views

CVE-2019-14696

CVE-2019-14696 affects Open-School 3.0 and Community Edition 2.3, exposing a Cross-Site Scripting (XSS) flaw. The vulnerability occurs in the GET parameter osv/index.php?r=students/guardians/create id, allowing injection of arbitrary JavaScript in the victim’s browser. This could enable session h...

6.1CVSS5.9AI score0.15682EPSS
Exploits5References3Affected Software1
Rows per page
Query Builder