CVE-2024-46336

Name of the Vulnerable Software and Affected Versions kashipara School Management System version 1.0

Description The software is susceptible to Cross Site Scripting (XSS) attacks. The issue is located in the /client user/feedback.php endpoint. An attacker could potentially inject malicious scripts into the application through this endpoint. The feedback.php file is vulnerable.

Recommendations Apply any available updates to address the issue in the feedback.php file. As a temporary workaround, consider restricting access to the /client user/feedback.php endpoint until a patch is available.