CVE-2021-46824
Description
Cross Site Scripting (XSS) vulnerability in sourcecodester School File Management System 1.0 via the Lastname parameter to the Update Account form in student_profile.php.
References
Product
Third Party AdvisoryVDB Entry
Third Party AdvisoryVDB Entry
CvssV3 impact
Could not find any metrics
CvssV2 impact
AccessComplexity | MEDIUM |
ConfidentialityImpact | NONE |
AvailabilityImpact | NONE |
IntegrityImpact | PARTIAL |
BaseScore | 3.5 |
VectorString | AV:N/AC:M/Au:S/C:N/I:P/A:N |
Version | 2.0 |
AccessVector | NETWORK |
Authentication | SINGLE |