CVE

CVE-2021-30111

admin

CVE-2021-30111

A stored XSS vulnerability exists in Web-School ERP V 5.0 via (Add Events) in the event name and description fields. An attack can inject a JavaScript code that will be stored in the page. If any visitor sees the events, then the payload will be executed.

Source: CVE-2021-30111

Exit mobile version