CVE-2026-9471

LOW SEVERITY

CVSS Score & Metrics

Base Score

3.5 / 10

Vector String

                                        CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N                                    

Vulnerability Description

A vulnerability was detected in yashpokharna2555 StudentManagementSystem cb2f558ddf8d19396de0f92abf2d224d46a0a203. This impacts an unknown function of the file /student.php. Performing a manipulation of the argument FIRST_NAME results in cross site scripting. The attack can be initiated remotely. The exploit is now public and may be used. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available. The project was informed of the problem early through an issue report but has not responded yet.

Vulnerability Details

Published Date

May 25, 2026

Last Modified

May 25, 2026

CWE ID

CWE-79

Source

NVD

External References

https://github.com/yashpokharna2555/StudentManagementSystem/
https://github.com/yashpokharna2555/StudentManagementSystem/issues/4
https://vuldb.com/submit/814002
https://vuldb.com/vuln/365452
https://vuldb.com/vuln/365452/cti

CVE-2026-9471

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment