3 matches found
EUVD-2023-58983
Malicious code in bioql PyPI...
PT-2024-14296 · Unknown · Simple Student Attendance System
Name of the Vulnerable Software and Affected Versions: Simple Student Attendance System version 1.0 Description: A Cross Site Scripting XSS issue allows a remote attacker to execute arbitrary code via a crafted payload to the page or class month parameter in the "/php-attendance/attendance report...
CVE-2024-1834
The CVE-2024-1834 entry describes a cross-site scripting (XSS) vulnerability in SourceCodester Simple Student Attendance System 1.0, affecting an unknown portion of the file at the endpoint ?page=attendance&class_id=1. By manipulating the class_date (examples show 2024-02-23%22%3E%3Cscript%3Ealer...