CVE-2023-38882

Publication date

2023-11-20 00:00:00

Family

mitre

State

PUBLISHED

Description

A reflected cross-site scripting (XSS) vulnerability in the Community Edition version 9.0 of OS4EDs openSIS Classic allows remote attackers to execute arbitrary JavaScript in the web browser of a user, by including a malicious payload into the include parameter in ForExport.php