Vulnerability Details CVE-2022-34550
Sims v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /addNotifyServlet. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the notifyInfo parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 28.5%
CVSS Severity
CVSS v3 Score 5.4
References
Products affected by CVE-2022-34550
-
Student Information Management System Project » Student Information Management System » Version: 1.0cpe:2.3:a:student_information_management_system_project:student_information_management_system:1.0