CVE-2026-4991

LOW CVSS 3.5 View on NVD ↗

Description

A vulnerability was detected in QDOCS Smart School Management System up to 7.2. The impacted element is an unknown function of the file /admin/enquiry of the component Admission Enquiry Module. Performing a manipulation of the argument Note results in cross site scripting. The attack is possible to be carried out remotely.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

References

https://vuldb.com/?ctiid.353878
https://vuldb.com/?id.353878
https://vuldb.com/?submit.776300

Published: Mar 27, 2026 23:17 UTC Modified: Mar 27, 2026 23:17 UTC