CVE-2020-29259

Name of the Vulnerable Software and Affected Versions Online Examination System version 1.0

Description The issue is a cross-site scripting (XSS) vulnerability. It can be exploited via the subject or feedback parameter to the "feedback.php" endpoint. This allows for potential malicious script injection.

Recommendations For Online Examination System version 1.0, as a temporary workaround, consider restricting access to the "feedback.php" endpoint or sanitizing the subject and feedback parameters to prevent XSS attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.