| Título | code-projects Student Information System 2.0 Improper Neutralization of Alternate XSS Syntax |
|---|
| Descrição | The `editprofile.php` file contains firstname parameter an unrestricted cross-site scripting (XSS) vulnerability, leading to a stored XSS attack. Malicious attackers can exploit this vulnerability to obtain sensitive information from the client side. |
|---|
| Fonte | ⚠️ https://github.com/asd1238525/cve/blob/main/xss7.md |
|---|
| Utilizador | yunlin (UID 79129) |
|---|
| Submissão | 02/11/2025 10h33 (há 6 meses) |
|---|
| Moderação | 15/11/2025 07h57 (13 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 332571 [code-projects Student Information System 2.0 /editprofile.php Script de Site Cruzado] |
|---|
| Pontos | 17 |
|---|