CVE-2023-39094 : Cross Site Scripting vulnerability in ZeroWdd studentmanager v.1.0 allows a remo

Cross Site Scripting vulnerability in ZeroWdd studentmanager v.1.0 allows a remote attacker to execute arbitrary code via the username parameter in the student list function.

Published 2023-08-21 17:15:48

Updated 2023-08-21 18:35:10

Source MITRE

View at NVD, CVE.org

Vulnerability category: Cross site scripting (XSS)Execute code

Products affected by CVE-2023-39094

We don't have affected product information for this CVE yet

Exploit prediction scoring system (EPSS) score for CVE-2023-39094

EPSS FAQ

0.19%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 41 %

Percentile, the proportion of vulnerabilities that are scored at or less

References for CVE-2023-39094

https://github.com/ZeroWdd/studentmanager/issues/12

There is a Stored-XSS vulnerability in studentmanager · Issue #12 · ZeroWdd/studentmanager · GitHub

Jump to

Vulnerability Details : CVE-2023-39094

Products affected by CVE-2023-39094

Exploit prediction scoring system (EPSS) score for CVE-2023-39094

References for CVE-2023-39094