CVE-2021-30111 – A stored XSS vulnerability exists in Web-School ERP V 5.0 via (Add Events) in the event na …

Vuln ID: CVE-2021-30111

Published:  2021-04-08  12:15:12Z

Description: A stored XSS vulnerability exists in Web-School ERP V 5.0 via (Add Events) in the event name and description fields. An attack can inject a JavaScript code that will be stored in the page. If any visitor sees the events, then the payload will be executed.

Source: NVD.NIST.GOV