| Titel | code-projects Student Information System 2.0 Improper Neutralization of Alternate XSS Syntax |
|---|
| Beschreibung | The `editprofile.php` file contains firstname parameter an unrestricted cross-site scripting (XSS) vulnerability, leading to a stored XSS attack. Malicious attackers can exploit this vulnerability to obtain sensitive information from the client side. |
|---|
| Quelle | ⚠️ https://github.com/asd1238525/cve/blob/main/xss7.md |
|---|
| Benutzer | yunlin (UID 79129) |
|---|
| Einreichung | 02.11.2025 10:33 (vor 6 Monaten) |
|---|
| Moderieren | 15.11.2025 07:57 (13 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 332571 [code-projects Student Information System 2.0 /editprofile.php Cross Site Scripting] |
|---|
| Punkte | 17 |
|---|