CVE-2023-44753 – Student Management System Stored Cross-Site Scripting Vulnerability

April 22, 2025

CVE ID : CVE-2023-44753

Published : April 22, 2025, 6:15 p.m. | 31 minutes ago

Description : A stored cross-site scripting (XSS) vulnerability fin Student Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the email parameter on the profile.php page.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2023-44755 – Sacco Management System SQL Injection

Next Article CVE-2025-34028 – Commvault Command Center Innovation Release Remote Code Execution Path Traversal

Highlights

CVE-2025-4126 – WordPress EG-Series Plugin Stored Cross-Site Scripting Vulnerability

May 15, 2025

CVE ID : CVE-2025-4126

Published : May 15, 2025, 4:16 a.m. | 39 minutes ago

Description : The EG-Series plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s [series] shortcode in all versions up to, and including, 2.1.1 due to insufficient input sanitization and output escaping on user supplied attributes in the shortcode_title function. This makes it possible for authenticated attackers – with contributor-level access and above, on sites with the Classic Editor plugin activated – to inject arbitrary JavaScript code in the titletag attribute that will execute whenever a user access an injected page.

Severity: 6.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How To Prevent WordPress SQL Injection Attacks

Java never goes out of style: Celebrating 30 years of the language

OpenAI o3-pro available in the API, BrowserStack adds Playwright support for real iOS devices, and more – Daily News Digest

Creating The “Moving Highlight” Navigation Bar With JavaScript And CSS

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

With WH40K Boltgun and Dungeons of Hinterberg, this month’s Humble Choice lineup is stacked for less than $12

I’ve been loving the upgrade to my favorite mobile controller, and there’s even a version for large tablets

Copilot Vision just launched — and Microsoft already added new features

Master Data Management: The Key to Improved Analytics Reporting

Master Data Management: The Key to Improved Analytics Reporting

Salesforce Lead-to-Revenue Management

React Native 0.80 – React 19.1, JS API Changes, Freezing Legacy Arch and much more

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

With WH40K Boltgun and Dungeons of Hinterberg, this month’s Humble Choice lineup is stacked for less than $12

I’ve been loving the upgrade to my favorite mobile controller, and there’s even a version for large tablets

CVE-2023-44753 – Student Management System Stored Cross-Site Scripting Vulnerability

Zero-Click AI Vulnerability Exposes Microsoft 365 Copilot Data Without User Interaction

Researchers Detail Zero-Click Copilot Exploit ‘EchoLeak’

CVE-2024-44905 – Go-Pg SQL Injection Vulnerability

The Role of Prosody in Spoken Question Answering

CVE-2025-46755 – Apache HTTP Server SQL Injection

CVE-2025-5594 – FreeFloat FTP Server SET Command Handler Buffer Overflow Vulnerability

CVE-2025-4126 – WordPress EG-Series Plugin Stored Cross-Site Scripting Vulnerability

CVE-2025-48341 – 10Web Form Maker Stored Cross-site Scripting

OpenAI brings ChatGPT Deep Research to Microsoft OneDrive and SharePoint, restricted by region and membership

CVE-2025-46826 – INSA Rouen insa-auth Information Disclosure

CVE-2023-44753 – Student Management System Stored Cross-Site Scripting Vulnerability

Related Posts