Cross-site Scripting (XSS) - Reflected in gibbonedu/core
Jan 22nd 2022
There's a reflected xss in the tab parameter in both the student dashboard and the staff dashboard
Proof of Concept
This vulnerability is result to xss which then can be used to achieve more things.