Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in LetterGrade allow remote attackers to inject arbitrary web script or HTML via (1) a student's email address, (2) the year parameter to genbrws/Student/cal_month.php3, and other unspecified vectors related to the calendar. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
LetterGrade 多个跨站脚本攻击漏洞
Vulnerability Description
LetterGrade中存在多个跨站脚本攻击漏洞,远程攻击者可以借助(1)一个学生的邮件地址(2)genbrws/Student/cal_month.php3的year参数,以及其他与日历有关的未明向量注入任意web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A