CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2024-4674 – Campcodes Complete Web-Based School Management System show_friend_request.php cross site scripting
https://notcve.org/view.php?id=CVE-2024-4674
A vulnerability, which was classified as problematic, was found in Campcodes Complete Web-Based School Management System 1.0. This affects an unknown part of the file /view/show_friend_request.php. The manipulation of the argument my_index leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. • https://github.com/E1CHO/cve_hub/blob/main/Complete%20Web-Based%20School%20Management%20System%20-%20xss/Complete%20Web-Based%20School%20Management%20System%20-%20vuln%2024.pdf https://vuldb.com/?ctiid.263595 https://vuldb.com/?id.263595 https://vuldb.com/?submit.331310 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2024-4673 – Campcodes Complete Web-Based School Management System show_student_grade_subject.php cross site scripting
https://notcve.org/view.php?id=CVE-2024-4673
A vulnerability, which was classified as problematic, has been found in Campcodes Complete Web-Based School Management System 1.0. Affected by this issue is some unknown functionality of the file /view/show_student_grade_subject.php. The manipulation of the argument id leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. • https://github.com/E1CHO/cve_hub/blob/main/Complete%20Web-Based%20School%20Management%20System%20-%20xss/Complete%20Web-Based%20School%20Management%20System%20-%20vuln%2023.pdf https://vuldb.com/?ctiid.263594 https://vuldb.com/?id.263594 https://vuldb.com/?submit.331308 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2024-4672 – Campcodes Complete Web-Based School Management System show_student_subject.php cross site scripting
https://notcve.org/view.php?id=CVE-2024-4672
A vulnerability classified as problematic was found in Campcodes Complete Web-Based School Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /view/show_student_subject.php. The manipulation of the argument id leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. • https://github.com/E1CHO/cve_hub/blob/main/Complete%20Web-Based%20School%20Management%20System%20-%20xss/Complete%20Web-Based%20School%20Management%20System%20-%20vuln%2022.pdf https://vuldb.com/?ctiid.263593 https://vuldb.com/?id.263593 https://vuldb.com/?submit.331307 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.0EPSS: 0%CPEs: 1EXPL: 1CVE-2024-4652 – Campcodes Complete Web-Based School Management System show_teacher2.php cross site scripting
https://notcve.org/view.php?id=CVE-2024-4652
A vulnerability, which was classified as problematic, was found in Campcodes Complete Web-Based School Management System 1.0. Affected is an unknown function of the file /view/show_teacher2.php. The manipulation of the argument month leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. • https://github.com/E1CHO/cve_hub/blob/main/Complete%20Web-Based%20School%20Management%20System%20-%20xss/Complete%20Web-Based%20School%20Management%20System%20-%20vuln%2021.pdf https://vuldb.com/?ctiid.263496 https://vuldb.com/?id.263496 https://vuldb.com/?submit.330126 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.0EPSS: 0%CPEs: 1EXPL: 1CVE-2024-4651 – Campcodes Complete Web-Based School Management System student_attendance_history1.php cross site scripting
https://notcve.org/view.php?id=CVE-2024-4651
A vulnerability, which was classified as problematic, has been found in Campcodes Complete Web-Based School Management System 1.0. This issue affects some unknown processing of the file /view/student_attendance_history1.php. The manipulation of the argument year leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. • https://github.com/E1CHO/cve_hub/blob/main/Complete%20Web-Based%20School%20Management%20System%20-%20xss/Complete%20Web-Based%20School%20Management%20System%20-%20vuln%2020.pdf https://vuldb.com/?ctiid.263495 https://vuldb.com/?id.263495 https://vuldb.com/?submit.330125 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •