← back
CVE-2020-27409

CVE-2020-27409

EPSS 1.0%
OpenSIS Community Edition before 7.5 is affected by a cross-site scripting (XSS) vulnerability in SideForStudent.php via the modname parameter.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/OS4ED/openSIS-Responsive-Design/commit/edca0855e7bc27d5b28dcb2d16f057ada865e282#diff-5f88e2ce4cd96451df7580911120b4b2https://github.com/OS4ED/openSIS-Responsive-Design/compare/ver7.4...V7.5https://insinuator.net/2020/10/opensis-vulnerabilities/