Submit #750217: https://github.com/ZeroWdd/studentmanager/ https://github.com/ZeroWdd/studentmanager/issues 1.0 Improper Neutralization of Input During Web Page Generationinfo

Titlehttps://github.com/ZeroWdd/studentmanager/ https://github.com/ZeroWdd/studentmanager/issues 1.0 Improper Neutralization of Input During Web Page Generation
DescriptionThere is a stored XSS vulnerability in the leave management module of the Student Manager system. When a low-privilege user submits a malicious payload, an administrator clicking to view it may lead to the compromise of the administrator account.
Source⚠️ https://www.yuque.com/clockw1se/lts9x9/mxgrzspnzmpxu7e7
User
 Clock12138 (UID 94875)
Submission02/02/2026 08:28 (3 months ago)
Moderation02/07/2026 18:45 (5 days later)
StatusAccepted
VulDB entry344904 [ZeroWdd studentmanager up to 2151560fc0a50ec00426785ec1e01a3763b380d9 LeaveController.java addLeave Reason for Leave cross site scripting]
Points16

PreviousOverviewNext

Might our Artificial Intelligence support you?

Check our Alexa App!