online diagnostic lab management system using php 1.0 - Cross-Site Scripting via Test Name Parameter
Cross Site Scripting vulnerability in online diagnostic lab management system using php v.1.0 allows a remote attacker to execute arbitrary code via the Test Name parameter on the diagnostic/add-test.php component.