CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 2CVE-2023-33580 – Student Study Center Management System v1.0 - Stored Cross-Site Scripting (XSS)
https://notcve.org/view.php?id=CVE-2023-33580
Phpgurukul Student Study Center Management System V1.0 is vulnerable to Cross Site Scripting (XSS) in the "Admin Name" field on Admin Profile page. Student Study Center Management System version 1.0 suffers from a persistent cross site scripting vulnerability. • https://www.exploit-db.com/exploits/51528 http://packetstormsecurity.com/files/173030/Student-Study-Center-Management-System-1.0-Cross-Site-Scripting.html https://github.com/sudovivek/My-CVE/blob/main/CVE-2023-33580_exploit.md https://phpgurukul.com/student-study-center-management-system-using-php-and-mysql • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 2CVE-2022-47102
https://notcve.org/view.php?id=CVE-2022-47102
A cross-site scripting (XSS) vulnerability in Student Study Center Management System V 1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter. Una vulnerabilidad de cross-site scripting (XSS) en Student Study Center Management System V 1.0 permite a los atacantes ejecutar cross-site scripting web o HTML de su elección a través de un payload manipulado inyectado en el parámetro de nombre. • https://github.com/sudoninja-noob/CVE-2022-47102 https://github.com/sudoninja-noob/CVE-2022-47102/blob/main/CVE-2022-47102 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •