OS4ED openSIS 8.0 is affected by cross-site scripting (XSS) in EmailCheckOthers.php. An attacker can inject JavaScript code to get the user's cookie and take over the working session of user.
Advisories
Source ID Title
EUVD EUVD EUVD-2021-27811 OS4ED openSIS 8.0 is affected by cross-site scripting (XSS) in EmailCheckOthers.php. An attacker can inject JavaScript code to get the user's cookie and take over the working session of user.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-04T02:51:06.341Z

Reserved: 2021-09-07T00:00:00

Link: CVE-2021-40637

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-03-03T15:15:08.427

Modified: 2024-11-21T06:24:29.190

Link: CVE-2021-40637

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.