Remyandrade: >> School Task Manager Security Vulnerabilities
In Sourcecodester School Task Manager v1.0, a vulnerability was identified within the subject_name= parameter, enabling Stored Cross-Site Scripting (XSS) attacks. This vulnerability allows attackers to manipulate the subject's name, potentially leading to the execution of malicious JavaScript payloads.
CVSS Score
6.1
EPSS Score
0.005
Published
2024-05-14
Sourcecodester School Task Manager App 1.0 allows SQL Injection via the 'task' parameter.
CVSS Score
9.8
EPSS Score
0.118
Published
2024-01-29