CVE-2022-1819

Name of the Vulnerable Software and Affected Versions Student Information System version 1.0

Description A problematic issue was found in the Student Information System, affecting the "admin/?page=students" endpoint of the Student Roll module. The manipulation with the input <script>alert(1)</script> leads to authenticated cross-site scripting. Exploit details have been disclosed to the public.

Recommendations For Student Information System version 1.0, consider disabling the admin/?page=students endpoint of the Student Roll module until a patch is available. Restrict access to this module to minimize the risk of exploitation. Avoid using malicious input in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.