Description
Cross-site scripting (XSS) vulnerability in smumdadotcom_ascyb_alumni/mod.php in SchoolAlumni Portal 2.26 allows remote attackers to inject arbitrary web script or HTML via the query parameter in a search operation in the katalog module. NOTE: some of these details are obtained from third party information.
Exploits (1)
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1017105
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/20673
Scores
EPSS
0.0035
EPSS Percentile
57.7%
Details
Status
published
Products (1)
schoolalumni_portal/schoolalumni_portal
2.26
Published
Oct 26, 2006
Tracked Since
Feb 18, 2026