Description

Cross-site scripting vulnerability exists in UNIVERSAL PASSPORT RX versions 1.0.0 to 1.0.8, which may allow a remote authenticated attacker with an administrative privilege to execute an arbitrary script on the web browser of the user who is using the product.

Related CPE's

Could not find any relations

References

https://jvn.jp/en/jp/JVN43215077/

https://www.jast-gakuen.com/products/unipa/

https://jvn.jp/en/jp/JVN43215077/

https://www.jast-gakuen.com/products/unipa/

Weaknesses

134c704f-9b21-4f2e-91b3-4a467353bcc0

Secondary
CWE-79

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

5.9 · Medium

Information

Source identifier

[email protected]

Vulnerability status

Awaiting analysis

Published

2024-06-03T02:15:09.287Z

1 year ago

Last modified

2025-03-19T20:15:35.330Z

1 year ago