SourceCodester Web-Based Student Clearance System add-student.php prepare cross site scripting
CVE-2022-3434

3.5LOW

Key Information:

Vendor: Sourcecodester
Status: Web-based Student Clearance System
Vendor: CVE Published:; 8 October 2022

Summary

A vulnerability was found in SourceCodester Web-Based Student Clearance System. It has been rated as problematic. Affected by this issue is the function prepare of the file /Admin/add-student.php. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-210356.

Affected Version(s)

Web-Based Student Clearance System

References

https://www.jianshu.com/p/489bca847079

https://vuldb.com/?id.210356

CVSS V3.1

Score:

3.5

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Oct 8, 2022
Vulnerability Reserved
Oct 8, 2022