Lucene search
Intern Record System Security Vulnerabilities
cve
SQL Injection vulnerability in Intern Record System version 1.0 in /intern/controller.php in 'phone', 'email', 'deptType' and 'name' parameters, allows attackers to execute arbitrary code and gain sensitive information.
9.8CVSS
10AI Score
0.002EPSS
2023-02-17 01:15 PM
24
cve
Cross Site Scripting (XSS) vulnerability in Intern Record System version 1.0 in /intern/controller.php in 'name' and 'email' parameters, allows attackers to execute arbitrary code.
5.4CVSS
5.5AI Score
0.001EPSS
2023-02-18 02:15 AM
19