StefanDorresteijn

2 exploits Active since Jun 2022
CVE-2021-39408 NOMISEC MEDIUM WRITEUP
Online Student Rate System 1.0 - Cross-Site Scripting via Index.php Page Parameter
Cross Site Scripting (XSS) vulnerability exists in Online Student Rate System 1.0 via the page parameter on the index.php file
CVSS 6.1
CVE-2021-39409 NOMISEC CRITICAL WORKING POC
Online Student Rate System v1.0 - Auth Bypass
A vulnerability exists in Online Student Rate System v1.0 that allows any user to register as an administrator without needing to be authenticated.
CVSS 9.8