Vulnerability — CVE-2022-45221

CVE-2022-45221

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2022-45221
Description:: Web-Based Student Clearance System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in changepassword.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the txtnew_password parameter.
Last updated date:: 11/30/2022

Type:: exploit
Confidence:: HIGH
Date of publishing:: 11/30/2022
Reference url to background: https://medium.com/@just0rg/web-based-student-clearance-system-in-php-free-source-code-v1-0-unrestricted-input-leads-to-xss-5802ead12124