Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:28 p.m.7 views

CVE-2020-28071

SourceCodester Alumni Management System 1.0 is affected by cross-site Scripting XSS in /admin/gallery.php. After the admin authentication an attacker can upload an image in the gallery using a XSS payload in the description textarea called 'about' and reach a stored XSS...

4.8CVSS5.4AI score0.00642EPSS
Exploits2
Circl
Circl
added 2020/12/23 9:12 p.m.10 views

CVE-2020-28071

creationtimestamp| type| source ---|---|--- 2020-12-23 21:12:58+00:00| seen| https://t.me/cibsecurity/21241 2024-11-14 06:07:42+00:00| seen| MISP/dab271fa-09e2-4c47-b782-e518ae4966c6...

4.8CVSS4.9AI score0.00642EPSS
Exploits2References1
NVD
NVD
added 2020/12/23 6:15 p.m.14 views

CVE-2020-28071

SourceCodester Alumni Management System 1.0 is affected by cross-site Scripting XSS in /admin/gallery.php. After the admin authentication an attacker can upload an image in the gallery using a XSS payload in the description textarea called 'about' and reach a stored XSS...

4.8CVSS4.9AI score0.00642EPSS
Exploits2References1
CVE
CVE
added 2020/12/23 5:54 p.m.51 views

CVE-2020-28071

SourceCodester Alumni Management System 1.0 is affected by a Stored Cross-Site Scripting (XSS) in /admin/gallery.php. After admin authentication, an attacker can supply an XSS payload in the description field named “about” when uploading a gallery image, triggering stored XSS that can affect both...

4.8CVSS4.8AI score0.00642EPSS
Exploits2References1Affected Software1
Packet Storm
Packet Storm
added 2020/12/17 12:0 a.m.191 views

Alumni Management System 1.0 Cross Site Scripting

Exploit Title: Stored XSS on Alumni Management System Date: 23/10/2020 Exploit Author: Valerio Alessandroni Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/14524/alumni-management-system-using-phpmysql-s ource-code.html Version: 1.0 Tested on:...

5.3AI score0.00642EPSS
Exploits2
Rows per page
Query Builder