Return to CVE list

CVE-2025-28121

6.1
Medium

CVE-2025-28121

cve@mitre.org
Analyzed
View on MITREFind on GitHub

Description

code-projects Online Exam Mastering System 1.0 is vulnerable to Cross Site Scripting (XSS) in feedback.php via the "q" parameter allowing remote attackers to execute arbitrary code.

Exploits

522722025-04-22remotePHP

code-projects Online Exam Mastering System 1.0 - Reflected Cross-Site Scripting (XSS)

By Pruthu Raut

References

cve@mitre.org
https://code-projects.org/online-exam-mastering-system-php/
cve@mitre.org
https://github.com/pruthuraut/CVE-2025-28121
134c704f-9b21-4f2e-91b3-4a467353bcc0
https://github.com/pruthuraut/CVE-2025-28121