| Название | code-projects Student Information System 2.0 Improper Neutralization of Alternate XSS Syntax |
|---|
| Описание | The `editprofile.php` file contains firstname parameter an unrestricted cross-site scripting (XSS) vulnerability, leading to a stored XSS attack. Malicious attackers can exploit this vulnerability to obtain sensitive information from the client side. |
|---|
| Источник | ⚠️ https://github.com/asd1238525/cve/blob/main/xss7.md |
|---|
| Пользователь | yunlin (UID 79129) |
|---|
| Представление | 02.11.2025 10:33 (6 месяцы назад) |
|---|
| Модерация | 15.11.2025 07:57 (13 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 332571 [code-projects Student Information System 2.0 /editprofile.php межсайтовый скриптинг] |
|---|
| Баллы | 17 |
|---|