Abhay Mp

**Name of the Vulnerable Software and Affected Versions** SourceCodester CET Automated Grading System with AI Predictive Analytics version 1.0 **Description** Improper access controls exist within the Student Self-Registration Endpoint in the `/index.php` file. This flaw allows for remote exploitation, enabling unauthorized access to restricted areas or functions. **Recommendations** Restrict access to the `/index.php` file within the Student Self-Registration Endpoint as a temporary mitigation measure. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SourceCodester CET Automated Grading System with AI Predictive Analytics version 1.0 **Description** Cross site scripting is possible through the remote manipulation of the `action` argument within an unknown function of the '/index.php' endpoint. Cross site scripting is a flaw that allows an attacker to inject malicious scripts into web pages viewed by other users. **Recommendations** Update SourceCodester CET Automated Grading System with AI Predictive Analytics version 1.0 to a version that contains a fix. At the moment, there is no information about a newer version that contains a fix for this vulnerability.