Assigner | mitre |
Updated | 2024-05-13 |
Description
Cross Site Scripting vulnerability in /php-lms/classes/Users.php?f=save in Computer Laboratory Management System using PHP and MySQL 1.0 allow remote attackers to inject arbitrary web script or HTML via the firstname, middlename, lastname parameters.
References
https://github.com/dovankha/CVE-2024-34224