CVE-2023-2826

Name of the Vulnerable Software and Affected Versions SourceCodester Class Scheduling System version 1.0

Description A vulnerability has been found in the SourceCodester Class Scheduling System, affecting the file search teacher result.php of the component POST Parameter Handler. The manipulation of the teacher argument leads to cross-site scripting. The attack can be initiated remotely.

Recommendations For version 1.0, consider disabling the teacher argument in the POST Parameter Handler to minimize the risk of exploitation until a patch is available. Restrict access to the search teacher result.php file to minimize the risk of remote attacks.