Cross-Site Scripting (XSS) Vulnerability in Open-School 3.0 and Community Edition 2.3 via osv/index.php?r=students/guardians/create id Parameter

Cross-Site Scripting (XSS) Vulnerability in Open-School 3.0 and Community Edition 2.3 via osv/index.php?r=students/guardians/create id Parameter

CVE-2019-14696 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Open-School 3.0, and Community Edition 2.3, allows XSS via the osv/index.php?r=students/guardians/create id parameter.

Learn more about our Web Application Penetration Testing UK.