| Title | lahirudanushka School-Management-System---PHP-MySQL Public 1.0.1 Cross Site Scripting |
|---|
| Description | A vulnerability pertaining to Stored Cross-site Scripting (XSS) has been identified in version 1.0.1 of School-Management-System---PHP-MySQL at /subject.php . This flaw enables attackers to inject a malicious script containing JavaScript code. Subsequently, this code may be triggered upon viewing the subjects tab. |
|---|
| Source | ⚠️ https://secretive-agate-23c.notion.site/School-Management-System-PHP-MySQL-stored-1-0-1-XSS-50088f0ed9e94efda9c57772ce192980 |
|---|
| User | Taher Aboud (UID 70699) |
|---|
| Submission | 06/26/2024 07:42 PM (2 years ago) |
|---|
| Moderation | 06/27/2024 07:24 AM (12 hours later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 269807 [lahirudanushka School Management System 1.0.0/1.0.1 Subject Page /subject.php Subject Title/Sybillus Details cross site scripting] |
|---|
| Points | 15 |
|---|