CVE-2017-7621
MEDIUMAuroMeera Technometrix Pvt. Ltd. eMLi V1.0 - XSS
Title source: llmDescription
Cross Site Scripting Vulnerability in core-eMLi in AuroMeera Technometrix Pvt. Ltd. eMLi V1.0 allows an Attacker to send malicious code, generally in the form of a browser-side script, to a different end user via the page parameter to code/student_portal/home.php. The affected versions are eMLi School Management 1.0, eMLi College Campus Management 1.0, and eMLi University Management 1.0.
Scores
CVSS v3
6.1
EPSS
0.0024
EPSS Percentile
47.0%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Classification
CWE
CWE-79
Status
published
Affected Products (2)
auromeera/emli
n/a/n/a
Timeline
Published
Apr 11, 2017
Tracked Since
Feb 18, 2026