Assigner | mitre |
Updated | 2024-06-04 |
Description
In Sourcecodester School Task Manager v1.0, a vulnerability was identified within the subject_name= parameter, enabling Stored Cross-Site Scripting (XSS) attacks. This vulnerability allows attackers to manipulate the subject's name, potentially leading to the execution of malicious JavaScript payloads.
References
https://github.com/unrealjbr/CVE-2024-28277