Vulnerability Details CVE-2024-35352
A vulnerability has been discovered in Diño Physics School Assistant version 2.3. This vulnerability impacts unidentified code within the file /classes/Users.php?f=save. Manipulating the parameter middlename results in cross-site scripting.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.3%
CVSS Severity
CVSS v3 Score 6.1
References
Products affected by CVE-2024-35352
-
cpe:2.3:a:dino_physics_school_assistant_project:dino_physics_school_assistant:2.3