Vulnerabilities > Rosariosis > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-09 | CVE-2022-2036 | Cross-site Scripting vulnerability in Rosariosis Cross-site Scripting (XSS) - Stored in GitHub repository francoisjacquet/rosariosis prior to 9.0.1. | 3.5 |
| 2022-06-08 | CVE-2022-1997 | Cross-site Scripting vulnerability in Rosariosis Cross-site Scripting (XSS) - Stored in GitHub repository francoisjacquet/rosariosis prior to 9.0. | 3.5 |
| 2022-02-24 | CVE-2021-44566 | Cross-site Scripting vulnerability in Rosariosis A Cross Site Scripting (XSS) vulnerability exists in RosarioSIS before 4.3 via the SanitizeMarkDown function in ProgramFunctions/MarkDownHTML.fnc.php. | 3.5 |
| 2022-02-24 | CVE-2021-44565 | Cross-site Scripting vulnerability in Rosariosis A Cross Site Scripting (XSS) vulnerability exists in RosarioSIS before 7.6.1 via the xss_clean function in classes/Security.php, which allows remote malicious users to inject arbitrary JavaScript or HTML. | 3.5 |