CVE-2023-51800 Information

Description

Cross Site Scripting (XSS) vulnerability in School Fees Management System v.1.0 allows a remote attacker to execute arbitrary code via a crafted payload to the main_settings component in the phone address bank acc_name acc_number parameters new_class and cname parameter add_new_parent function in the name email parameters new_term function in the tname parameter and the edit_student function in the name parameter.

Reference

https://github.com/geraldoalcantara/CVE-2023-51800