← volver
CVE-2021-30111

CVE-2021-30111

EPSS 0.7%
A stored XSS vulnerability exists in Web-School ERP V 5.0 via (Add Events) in the event name and description fields. An attack can inject a JavaScript code that will be stored in the page. If any visitor sees the events, then the payload will be executed.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/0xrayan/CVEs/issues/4https://web-school.in/try-demo/http://web-school.in