CVE-2023-41616: XSS
First published: Thu Sep 21 2023(Updated: )
A reflected cross-site scripting (XSS) vulnerability in the Search Student function of Student Management System v1.2.3 and before allows attackers to execute arbitrary Javascript in the context of a victim user's browser via a crafted payload.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Student Management System | <=1.2.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2023-41616.
What is the severity level of CVE-2023-41616?
The severity level of CVE-2023-41616 is medium with a score of 4.8.
What is the description of CVE-2023-41616?
CVE-2023-41616 is a reflected cross-site scripting (XSS) vulnerability in the Search Student function of Student Management System v1.2.3 and before.
How does CVE-2023-41616 affect the software?
CVE-2023-41616 affects the Student Management System v1.2.3 and before.
Is there a fix available for CVE-2023-41616?
To fix CVE-2023-41616, it is recommended to update to a version of Student Management System that is later than 1.2.3.
- agent/type
- agent/softwarecombine
- agent/severity
- agent/references
- agent/event
- agent/description
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- agent/weakness
- agent/author
- vendor/student management system project
- canonical/student management system
- version/student management system/1.2.3