A vulnerability was identified in code-projects Employee Profile Management System 1.0. This issue affects some unknown processing of the file /view_personnel.php. The manipulation of the argument per_address/dr_school/other_school leads to cross site scripting. The attack may be initiated remotely. The exploit is publicly available and might be used.
GHSA-jx8c-5wrw-pprp: A vulnerability was identified in code-projects Employee Profile Management System 1.0. This...
A cross-site scripting (XSS) vulnerability was identified in code-projects Employee Profile Management System 1.0, affecting the /view_personnel.php file and exploitable via the per_address/dr_school/other_school argument.