2020-07-14 14:26:43
mitre
PUBLISHED
RosarioSIS through 6.8-beta allows modules/Custom/NotifyParents.php XSS because of the href attributes for AddStudents.php and User.php.