N/A

Cross Site Scripting Vulnerability in core-eMLi in AuroMeera Technometrix Pvt. Ltd. eMLi V1.0 allows an Attacker to send malicious code, generally in the form of a browser-side script, to a different end user via the page parameter to code/student_portal/home.php. The affected versions are eMLi School Management 1.0, eMLi College Campus Management 1.0, and eMLi University Management 1.0.

N/A

N/A

多款AuroMeera产品跨站脚本漏洞

AuroMeera Technometrix Pvt eMLi School Management等都是印度AuroMeera公司的应用于教育行业的产品。eMLi School Management是一套学校管理系统；eMLi College Campus Management是一套校园综合管理系统。 多款AuroMeera产品中的core-eMLi存在跨站脚本漏洞。攻击者可通过向code/student_portal/home.php发送‘page’参数利用该漏洞以浏览器端脚本的形式发送恶意代码。以下产

N/A

N/A