5 matches found
CVE-2025-14347 Reflected XSS in Proliz's OBS
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Proliz Software Ltd. OBS Student Affairs Information System0 allows Reflected XSS. This issue affects OBS Student Affairs Information System0: before 26.5009...
CVE-2025-14347
CVE-2025-14347 describes a reflected Cross-Site Scripting (XSS) vulnerability in Proliz Software Ltd. OBS (Student Affairs Information System) prior to version 26.5009. The root cause is improper neutralization of input during web page generation, enabling reflected XSS. The CVE entry specifies n...
CVE-2025-11956
Proliz OBS (Student Affairs Information System) is affected up to version 25.0401. The vulnerability is a Stored XSS caused by improper neutralization of input during web page generation, enabling injection of untrusted data that persists in the system. Affected component: OBS web page generation...
CVE-2025-10914 Reflected XSS in Proliz's OBS
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Proliz Software Ltd. Co. OBS Student Affairs Information System allows Reflected XSS. This issue affects OBS Student Affairs Information System: before V26.0401...
CVE-2025-0875 IDOR in Proliz Software's OBS
Authorization Bypass Through User-Controlled Key vulnerability in PROLIZ Computer Software Hardware Service Trade Ltd. Co. OBS Student Affairs Information System allows Parameter Injection. This issue affects OBS Student Affairs Information System: before v26.0328...