Cross Site Scripting Vulnerability in Igweze Wizgrade Software
CVE-2026-15492
5.3MEDIUM
What is CVE-2026-15492?
A security flaw has been identified in the Igweze Wizgrade software, specifically in the dashboard/studentConductManager.php file, potentially allowing attackers to exploit the system via cross site scripting (XSS). This vulnerability can be triggered remotely, leading to unauthorized manipulation of web pages within the application. The software uses a rolling release system, meaning that specific version information for affected or patched releases is not readily available. Despite earlier notifications to the vendor regarding this issue, no response has been received.
Affected Version(s)
wizgrade b1d55f22b90cd7e7a6e5002f006d7c649e8086d6
