Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SapneshNaik Student Management System index.php cross site scripting
Vulnerability Description
A vulnerability was identified in SapneshNaik Student Management System up to f4b4f0928f0b5551a28ee81ae7e7fe47d9345318. This impacts an unknown function of the file index.php. Such manipulation of the argument Error leads to cross site scripting. The attack can be launched remotely. The exploit is publicly available and might be used. This product does not use versioning. This is why information about affected and unaffected releases are unavailable. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Student Management System 代码注入漏洞
Vulnerability Description
Student Management System是孟加拉国Sk.Amir Hamza个人开发者的一个简单的基于网络的学生管理软件。 Student Management System存在代码注入漏洞,该漏洞源于对文件index.php中参数Error的错误操作,可能导致跨站脚本攻击。
CVSS Information
N/A
Vulnerability Type
N/A