CVE-2021-44566
on gitlab
Published
Severity
CVSS v3:
5.4 MEDIUM
CVSS v2:
3.5 LOW
Description
A Cross Site Scripting (XSS) vulnerability exists in RosarioSIS before 4.3 via the SanitizeMarkDown function in ProgramFunctions/MarkDownHTML.fnc.php.
References
Configurations
CPE23 | Version Start | Version End | Exact Version |
---|---|---|---|
cpe:2.3:a:rosariosis:rosariosis:*:*:*:*:*:*:*:* | n/a | 4.3 | * |