Stored XSS Vulnerability in Sourcecodester Online Enrollment Management System and PayPal Free Source Code 1.0 via Name Parameter

Stored XSS Vulnerability in Sourcecodester Online Enrollment Management System and PayPal Free Source Code 1.0 via Name Parameter

CVE-2021-40577 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

A Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodester Online Enrollment Management System in PHP and PayPal Free Source Code 1.0 in the Add-Users page via the Name parameter.

Learn more about our User Device Pen Test.