CVE-2023-1567 LOW

CVE-2023-1567: SourceCodester Student Study Center Desk Management System assign.php cross site scripting

Vendor Sourcecodester
Product Student Study Center Desk Management System
Weakness CWE-79 · XSS
Published March 22, 2023
Last update February 14, 2025
View on NVD All CVEs

CVSS base score

3.5/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction Required
Confidentiality None
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

What the vulnerability does

01Description

A vulnerability was found in SourceCodester Student Study Center Desk Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /admin/assign/assign.php. The manipulation of the argument sid leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-223559.

Key dates

02Disclosure timeline

March 22, 2023 CVE published
February 14, 2025 Record updated

Related vulnerabilities

04Related CVE

CVE-2026-47694 WWBN AVideo: Stored XSS via unescaped Gallery category description CVE-2025-8867 Graphina - Elementor Charts and Graphs <= 3.1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2022-23912 AP Custom Testimonial < 1.4.8 - Reflected Cross-Site Scripting CVE-2025-12473 RTMKit <= 1.6.8 - Reflected Cross-Site Scripting via 'themebuilder' Parameter CVE-2026-28560 wpForo Forum 2.4.14 Stored XSS via Unsafe JSON Encoding in Inline Script