CVE-2023-2814

Name of the Vulnerable Software and Affected Versions SourceCodester Class Scheduling System version 1.0

Description A problematic vulnerability has been found in the SourceCodester Class Scheduling System. The issue affects an unknown function of the file /admin/save teacher.php, specifically the component POST Parameter Handler. The manipulation of the Academic Rank argument leads to cross-site scripting. This attack can be launched remotely.

Recommendations For version 1.0, consider disabling the Academic Rank argument in the /admin/save teacher.php file as a temporary workaround until a patch is available. Restrict access to the POST Parameter Handler component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.