5 matches found
CVE-2020-28071
SourceCodester Alumni Management System 1.0 is affected by cross-site Scripting XSS in /admin/gallery.php. After the admin authentication an attacker can upload an image in the gallery using a XSS payload in the description textarea called 'about' and reach a stored XSS...
CVE-2020-28071
creationtimestamp| type| source ---|---|--- 2020-12-23 21:12:58+00:00| seen| https://t.me/cibsecurity/21241 2024-11-14 06:07:42+00:00| seen| MISP/dab271fa-09e2-4c47-b782-e518ae4966c6...
CVE-2020-28071
SourceCodester Alumni Management System 1.0 is affected by cross-site Scripting XSS in /admin/gallery.php. After the admin authentication an attacker can upload an image in the gallery using a XSS payload in the description textarea called 'about' and reach a stored XSS...
CVE-2020-28071
SourceCodester Alumni Management System 1.0 is affected by a Stored Cross-Site Scripting (XSS) in /admin/gallery.php. After admin authentication, an attacker can supply an XSS payload in the description field named “about” when uploading a gallery image, triggering stored XSS that can affect both...
Alumni Management System 1.0 Cross Site Scripting
Exploit Title: Stored XSS on Alumni Management System Date: 23/10/2020 Exploit Author: Valerio Alessandroni Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/14524/alumni-management-system-using-phpmysql-s ource-code.html Version: 1.0 Tested on:...