Xzs-mysql@3.9.0 Security Vulnerabilities and Issues — Xzs-mysql@3.9.0 CVE List

Lucene search

MindskipXzs-mysql3.9.0

3 matches found

CVE•added 2025/02/06 11:15 p.m.•93 views

CVE-2025-1082

A vulnerability classified as problematic has been found in Mindskip xzs-mysql 学之思开源考试系统 3.9.0. Affected is an unknown function of the file /api/admin/question/edit of the component Exam Edit Handler. The manipulation of the argument title/content leads to cross site scripting. It is possible to la...

5.1CVSS3.8AI score0.00038EPSS

CVE•added 2025/02/07 12:15 a.m.•48 views

CVE-2025-1084

A vulnerability, which was classified as problematic, has been found in Mindskip xzs-mysql 学之思开源考试系统 3.9.0. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the public a...

5.3CVSS4.6AI score0.00026EPSS

CVE•added 2025/02/06 11:15 p.m.•42 views

CVE-2025-1083

A vulnerability classified as problematic was found in Mindskip xzs-mysql 学之思开源考试系统 3.9.0. Affected by this vulnerability is an unknown functionality of the component CORS Handler. The manipulation leads to permissive cross-domain policy with untrusted domains. The attack can be launched remotely. ...

3.1CVSS6.9AI score0.00026EPSS