| Título | hemant6488 CodeIgniter-StudentManagementSystem 1.0 Stored Cross-Site Scripting |
|---|
| Descrição | The `addStudent` method in the `Students` controller does not perform any input filtering or sanitisation before storing user-supplied data in the database. Subsequently, the `view_students.php` view renders the student’s name directly without HTML entity encoding.
This allows an attacker to inject arbitrary JavaScript (e.g., via the `name` parameter) that is persisted in the database and executed whenever any user visits the student listing page. Because the endpoint is accessible without authentication (see the Broken Access Control vulnerability), the attack can be carried out by an anonymous remote user. |
|---|
| Fonte | ⚠️ https://github.com/hemant6488/CodeIgniter-StudentManagementSystem/issues/6 |
|---|
| Utilizador | BingZhe (UID 97643) |
|---|
| Submissão | 27/04/2026 17h53 (há 1 mês) |
|---|
| Moderação | 25/05/2026 21h08 (28 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 365538 [hemant6488 CodeIgniter-StudentManagementSystem Students Controller view_students.php addStudent Nome Script de Site Cruzado] |
|---|
| Pontos | 20 |
|---|