2 matches found
CVE-2021-29055
The CVE-2021-29055 entry documents a Cross Site Scripting (XSS) vulnerability in Sourcecodester’s School File Management System 1.0, exploitable via the Firstname parameter in the Update Account form on student_profile.php. The affected component is the Update Account workflow, specifically the F...
CVE-2021-46824
The CVE-2021-46824 entry describes a Cross Site Scripting (XSS) vulnerability in the Sourcecodester School File Management System 1.0, exploitable via the Lastname parameter in the Update Account form (student_profile.php). Affected component: Update Account on School File Management System 1.0; ...