CVE-2024-28277 Information

Description

In Sourcecodester School Task Manager v1.0 a vulnerability was identified within the subject_name= parameter enabling Stored Cross-Site Scripting (XSS) attacks. This vulnerability allows attackers to manipulate the subject’s name potentially leading to the execution of malicious JavaScript payloads.

Reference

https://www.sourcecodester.com/download-code?nid=16877&title=School+Task+Manager+Using+PHP+with+Source+Code https://github.com/unrealjbr/CVE-2024-28277