CVE-2019-1010028

Published: Jul 15, 2019

Modified: Aug 5, 2024

PUBLISHED

Description

phpscriptsmall.com School College Portal with ERP Script 2.6.1 and earlier is affected by: Cross Site Scripting (XSS). The impact is: Attack administrators and teachers, students and more. The component is: /pro-school/index.php?student/message/send_reply/. The attack vector is: <img src=x onerror=alert(document.domain) />.

Vendor	Product	Versions
PHP Scripts Mall Pvt. Ltd.	School College Portal with ERP Script	affected `≤ 2.6.1`

References

https://whitehatck01.blogspot.com/2018/02/school-college-portal-with-erp-script.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-1010028

Description

Affected Products

References