CVE-2026-5643 Cyber-III Student-Management-System Admin Add Endpoint notice.php cross site scripting

A vulnerability was identified in Cyber-III Student-Management-System up to 1a938fa61e9f735078e9b291d2e6215b4942af3f. This impacts an unknown function of the file /admin/Add%20notice/notice.php of the component Admin Add Endpoint. Such manipulation of the argument $SERVER'PHPSELF' leads to cross...

PT-2026-30594

A security flaw has been discovered in Cyber-III Student-Management-System up to 1a938fa61e9f735078e9b291d2e6215b4942af3f. Affected is an unknown function of the file /admin/Add%20notice/batch-notice.php. Performing a manipulation of the argument $ SERVER'PHP SELF' results in cross site scripting...

Linux Distros Unpatched Vulnerability : CVE-2018-19993

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A reflected cross-site scripting XSS vulnerability in Dolibarr 8.0.2 allows remote attackers to inject arbitrary web script or HTML via the transphrase paramete...

UBUNTU-CVE-2018-19993

A reflected cross-site scripting XSS vulnerability in Dolibarr 8.0.2 allows remote attackers to inject arbitrary web script or HTML via the transphrase parameter to public/notice.php...

CraftedWeb Cross-Site Scripting Vulnerability

CraftedWeb is a CMS Content Management System for game servers. A cross-site scripting vulnerability exists in the aaspincludes/pages/notice.php file in versions of CraftedWeb prior to 2013-09-24. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML with the 'e'...

CVE-2018-12919

In CraftedWeb through 2013-09-24, aaspincludes/pages/notice.php allows XSS via the e parameter...