pruthuraut

CVE-2025-46173 NOMISEC MEDIUM WRITEUP

Online Exam Mastering System 1.0 - Stored Cross-Site Scripting via Feedback Form Name Field

code-projects Online Exam Mastering System 1.0 is vulnerable to Cross Site Scripting (XSS) via the name field in the feedback form.

CVSS 6.1

View Code

CVE-2025-28121 NOMISEC MEDIUM WRITEUP

Online Exam Mastering System 1.0 - Cross-Site Scripting via Feedback q Parameter

code-projects Online Exam Mastering System 1.0 is vulnerable to Cross Site Scripting (XSS) in feedback.php via the "q" parameter allowing remote attackers to execute arbitrary code.

CVSS 6.1

View Code