CVE-2025-63443
CVE-2025-63443 affects School Management System PHP v1.0. The vulnerability is a Cross-Site Scripting (XSS) in the login form, exploitable via the unvalidated/unsanitized password parameter sent to /login.php . The referenced sources consistently describe the issue as an XSS condition stemming fr...