3 matches found
CVE-2023-49986
A cross-site scripting XSS vulnerability in the component /admin/parent of School Fees Management System 1.0 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...
CVE-2023-49986
A cross-site scripting XSS vulnerability in the component /admin/parent of School Fees Management System 1.0 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...
CVE-2023-49986
The CVE-2023-49986 entry describes an XSS vulnerability in School Fees Management System 1.0, specifically in the /admin/parent component where a crafted payload placed in the name parameter can cause arbitrary web scripts/HTML to run. Root cause is unvalidated input in the name field leading to ...