CVE-2024-25551

Name of the Vulnerable Software and Affected Versions sourcecodester Simple Student Attendance System version 1.0

Description The issue allows attackers to execute arbitrary code via a crafted GET request to the web application URL. This is a Cross Site Scripting (XSS) vulnerability, which means an attacker can inject malicious scripts into the website, potentially allowing them to steal user data or take control of the user's session.

Recommendations For sourcecodester Simple Student Attendance System version 1.0, update to a newer version that contains a fix for this issue. As a temporary workaround, consider restricting access to the web application URL to minimize the risk of exploitation. Avoid using the web application until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.