Vulnerabilities
Vulnerable Software
Rocketsoft:  >> Rocket Lms  Security Vulnerabilities
A cross-site scripting (XSS) vulnerability in Rocketsoft Rocket LMS 1.9 allows an administrator to store a JavaScript payload using the admin web interface when creating new courses and new course notifications.
CVSS Score
4.8
EPSS Score
0.008
Published
2024-05-17
A vulnerability was found in RocketSoft Rocket LMS 1.7. It has been declared as problematic. This vulnerability affects unknown code of the file /contact/store of the component Contact Form. The manipulation of the argument name/subject/message leads to cross site scripting. The attack can be initiated remotely. The identifier of this vulnerability is VDB-232756.
CVSS Score
3.5
EPSS Score
0.001
Published
2023-06-30


Contact Us

Shodan ® - All rights reserved