CVE-2024-4674
CVE-2024-4674 affects Campcodes Complete Web-Based School Management System 1.0. The vulnerability resides in the /view/show_friend_request.php page, where unsafely handling the my_index parameter enables cross-site scripting. The issue can be triggered remotely and exploit details have been publ...