imvks786 Student Management System Cross-Site Scripting Vulnerability

A stored cross-site scripting vulnerability has been identified in the imvks786 student management system, affecting versions up to commit 9599b560ad3c3b83e75d328b76bedcd489ef1f46. The issue arises in the file add.php, where user input from fields such as name and address is directly inserted into an SQL query without proper sanitization. This allows for the injection of malicious scripts, which are executed when the data is viewed on various pages, including see.php and std_home/std_profile.php. The vulnerability can be exploited remotely, and the injected scripts run in the context of the user's browser, potentially leading to session hijacking and unauthorized access to user accounts.

Impact

Exploitation of this vulnerability allows for stored cross-site scripting, where injected scripts are executed in the context of users viewing the affected student records. This could lead to session hijacking and, if an administrator's session is stolen, a complete takeover of their account.

Reproduction

To reproduce this vulnerability, log in with an account that has permission to add student records. Send a POST request to add.php with a crafted name or address field containing a malicious script, such as an SVG tag with an onload event. After the record is successfully added, navigate to a page that displays student records, such as see.php. The injected script will execute in the browser, demonstrating the cross-site scripting vulnerability.