XSS vulnerabilities

Brought to you by: mrmunkey22

#4 XSS vulnerabilities

Milestone: v1.0_(example)

Status: open

Owner: nobody

Labels: None

Priority: 5

Updated: 2024-05-07

Created: 2022-12-04

Creator: ac

Private: No

To the developers,

In the progress of our security research project, we found stored XSS vulnerabilities in version 1.5.4 of the application. Related files: ViewAnnouncements.php, AddClass.php, VisualizeClasses.php, ViewAssignments.php, EditParent.php, EditStudent.php, EditTeacher.php, EditClass.php, ViewGrades.php, GradeReport.php, ViewStudents.php, PointsReport.php

Please contact us at ca224test@gmail.com, so we can provide reproducing steps of the vulnerabilities.
Thank you.

Discussion

ac - 2024-05-07

we further found request race vulnerabilities in version 1.5.4 of the application. Please contact us at ca224test@gmail.com, so we can provide reproducing steps of the vulnerabilities.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

XSS vulnerabilities

Group

Searches

Help

#4 XSS vulnerabilities

Discussion