Reflected Cross-Site Scripting Vulnerability in OBS by Proliz Software Ltd.
CVE-2025-10914
7.6HIGH
What is CVE-2025-10914?
A vulnerability exists in Proliz Software Ltd.'s OBS (Student Affairs Information System), which allows for reflected cross-site scripting (XSS) attacks. This issue enables attackers to inject malicious scripts into web pages that are returned to users, potentially compromising sensitive information or executing unauthorized actions in the context of the victim's browser. This vulnerability affects all versions prior to V26.0401, highlighting the importance of prompt updates and adherence to best security practices to mitigate risks.
Affected Version(s)
OBS (Student Affairs Information System) 0
