Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown

CVE-2023-47446

Disclosure Date: November 15, 2023 (last updated November 21, 2023)
Pre-School Enrollment version 1.0 is vulnerable to Cross Site Scripting (XSS) on the profile.php page via fullname parameter.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2023-47445

Disclosure Date: November 15, 2023 (last updated November 21, 2023)
Pre-School Enrollment version 1.0 is vulnerable to SQL Injection via the username parameter in preschool/admin/ page.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0