CVE-2015-0900
31.03.2015, 10:59
Cross-site scripting (XSS) vulnerability in schedule.cgi in Nishishi Factory Fumy Teacher's Schedule Board 1.10 through 2.21 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
| Vendor | Product | Version |
|---|---|---|
| nishishi | fumy_teachers_schedule_board | 1.10 |
| nishishi | fumy_teachers_schedule_board | 2.00 |
| nishishi | fumy_teachers_schedule_board | 2.10 |
| nishishi | fumy_teachers_schedule_board | 2.20 |
| nishishi | fumy_teachers_schedule_board | 2.21 |
𝑥
= Vulnerable software versions
References