CVE-2020-29258
https://notcve.org/view.php?id=CVE-2020-29258
Cross-site scripting (XSS) vulnerability in Online Examination System 1.0 via the w parameter to index.php. Una vulnerabilidad de tipo cross-site scripting (XSS) en Online Examination System versión 1.0, por medio del parámetro w en el archivo index.php • https://asfiyashaikh20.medium.com/exploit-for-cve-2020-29258-reflected-cross-site-scripting-xss-vulnerability-957f365a1f3b • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2020-29257
https://notcve.org/view.php?id=CVE-2020-29257
Cross-site scripting (XSS) vulnerability in Online Examination System 1.0 via the q parameter to feedback.php. Una vulnerabilidad de tipo cross-site scripting (XSS) en Online Examination System versión 1.0, por medio del parámetro q en el archivo feedback.php • https://asfiyashaikh20.medium.com/exploit-for-cve-2020-29257-reflected-cross-site-scripting-xss-vulnerability-4a7bf9ae7d80 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •