A vulnerability was found in Project Worlds Student Project Allocation System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file admin_login.php of the component Admin Login Module. The manipulation of the argument msg with the input
test%22%3Cscript%3Ealert(%27Torada%27)%3C/script%3E
leads to cross site scripting.
The identification of this vulnerability is CVE-2024-0726. The attack may be initiated remotely. Furthermore, there is an exploit available.