提出 #590569: SourceCodester Student Result Management System 1.0 Cross Site Scripting情報

タイトルSourceCodester Student Result Management System 1.0 Cross Site Scripting
説明Stored Cross Site Scripting vulnerabilities were discovered in multiple spots in Student Result Management System v1.0. Specifically, the application contains 4 different roles in the system, there are Administrator, Academic Teacher, Teacher and Student roles. As an Academic Teacher account, the below fields are vulnerable to Stored Cross Site Scripting Vulnerabilities: Field 1: Email Field in Profile Setting Field 2: Academic Term field in Academic Terms Page Field 3: Class Name field in Classes Page Field 4: Subject field in Subjects Page Field 5: Remark field in Grading System Page Field 6: Division field in Division System Page Field 7: Title field in Announcement Page
ソース⚠️ https://github.com/0xEricTee/CVE/blob/main/Research/Stored_XSS.md
ユーザー
 erictee2802 (UID 86165)
送信2025年06月05日 07:10 (1 年 ago)
モデレーション2025年06月05日 14:17 (7 hours later)
ステータス承諾済み
VulDBエントリ311241 [SourceCodester Student Result Management System 1.0 Profile Setting Page update_profile クロスサイトスクリプティング]
ポイント20

概要

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!