A vulnerability classified as problematic has been found in Diño Physics School Assistant 2.3. This affects an unknown part of the file /classes/Users.php. The manipulation of the argument id leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2024-35345. It is possible to initiate the attack remotely. There is no exploit available.