| タイトル | PHPEMS V11.0 Stored Cross-Site Scripting |
|---|
| 説明 | PHPEMS online mock exam system is developed based on PHP and MySQL, supports various question types and display methods, and is the first PHP online mock exam system in China to support both open-ended questions and integrated manual/automatic scoring. This system is permanently open source and free. However, PHPEMS online mock exam system contains an XSS vulnerability, which attackers can exploit to obtain sensitive information such as user cookies. |
|---|
| ソース | ⚠️ https://github.com/shufenshui/CVE/issues/1 |
|---|
| ユーザー | shufenshui (UID 96148) |
|---|
| 送信 | 2026年03月05日 17:13 (4 月 ago) |
|---|
| モデレーション | 2026年03月11日 10:17 (6 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 350368 [PHPEMS 11.0 /index.php?ask=app-ask askcontent クロスサイトスクリプティング] |
|---|
| ポイント | 20 |
|---|