Vulnerabilities > Student Management System Project > Student Management System > Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2023-09-21	CVE-2023-41616	Cross-site Scripting vulnerability in Student Management System Project Student Management System 1.0 A reflected cross-site scripting (XSS) vulnerability in the Search Student function of Student Management System v1.2.3 and before allows attackers to execute arbitrary Javascript in the context of a victim user's browser via a crafted payload. network low complexity student-management-system-project CWE-79	4.8
2022-07-28	CVE-2021-33371	Cross-site Scripting vulnerability in Student Management System Project Student Management System 1.0 A stored cross-site scripting (XSS) vulnerability in /nav_bar_action.php of Student Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Chat box. network low complexity student-management-system-project CWE-79	5.4

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.