Persistent Cross Site Scripting Vulnerability in College Website Management System 1.0

Persistent Cross Site Scripting Vulnerability in College Website Management System 1.0

CVE-2022-1075 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

A vulnerability was found in College Website Management System 1.0 and classified as problematic. Affected by this issue is the file /cwms/classes/Master.php?f=save_contact of the component Contact Handler. The manipulation leads to persistent cross site scripting. The attack may be launched remotely and requires authentication.

Learn more about our Web App Pen Testing.