CVE-2022-42200

Name of the Vulnerable Software and Affected Versions Simple Exam Reviewer Management System version 1.0

Description The issue concerns Stored Cross Site Scripting (XSS) via the Exam List. This means an attacker can inject malicious scripts into the Exam List, which can then be executed by other users, potentially leading to unauthorized actions or data theft.

Recommendations For Simple Exam Reviewer Management System version 1.0, consider disabling the Exam List feature until a patch is available to prevent exploitation of the Stored Cross Site Scripting (XSS) issue. Restrict access to the Exam List to minimize the risk of exploitation. Avoid using the Exam List until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.