漏洞标题
PHPGurukul 公司访客管理系统中的搜索访客页面(search-visitor.php)存在跨站脚本攻击(cross-site scripting)。
漏洞描述信息
PHPGurukul公司访客管理系统1.0中发现了一个漏洞。该问题被评为有问题。受此问题影响的是文件search-visitor.php中的某些未知功能。操纵导致跨站点脚本。攻击可能从远程发起。该利用已向公众披露,可能被使用。VDB-251378是分配给此漏洞的标识符。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
漏洞类别
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
漏洞标题
PHPGurukul Company Visitor Management System search-visitor.php cross site scripting
漏洞描述信息
A vulnerability was found in PHPGurukul Company Visitor Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file search-visitor.php. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-251378 is the identifier assigned to this vulnerability.
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
漏洞类别
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
漏洞标题
PHPGurukul Company Visitor Management System 跨站脚本漏洞
漏洞描述信息
PHPGurukul Company Visitor Management System是一个访客管理系统。 PHPGurukul Company Visitor Management System 1.0版本存在跨站脚本漏洞,该漏洞源于文件search-visitor.php会导致跨站脚本。
CVSS信息
N/A
漏洞类别
跨站脚本