GHSA-vh8j-88qp-3xwr
GitHub Security Advisory
⚠ Unreviewed
MODERATE
Has CVE
Advisory Details
A reflected cross-site scripting (XSS) vulnerability in the Community Edition version 9.0 of OS4ED's openSIS Classic allows remote attackers to execute arbitrary JavaScript in the web browser of a user, by including a malicious payload into the 'include' parameter in 'ForExport.php'
Related CVEs
Key Information
5.0
/10
Dataset
Last updated: July 31, 2025 6:36 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.