Lucene search

[email protected]CVE-2022-42066

HistoryOct 14, 2022 - 3:16 p.m.

CVE-2022-42066

2022-10-1415:16:23

CWE-79

[email protected]

web.nvd.nist.gov

cve-2022-42066

online examination system

xss

index.php

vulnerability

nvd

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

49.3%

JSON

Online Examination System version 1.0 suffers from a cross site scripting vulnerability via index.php.

Affected configurations

NVD

Node

projectworldsonline_examination_systemMatch1.0

CPENameOperatorVersion
projectworlds:online_examination_systemprojectworlds online examination systemeq1.0

CPE	Name	Operator	Version
projectworlds:online_examination_system	projectworlds online examination system	eq	1.0

References

packetstormsecurity.com/files/168549/Online-Examination-System-1.0-Cross-Site-Scripting.html

projectworlds.in/free-projects/php-projects/online-examination/

Social References

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

49.3%

JSON

Related for CVE-2022-42066

prion1 cvelist1 nvd1