A vulnerability was found in Diño Physics School Assistant 2.3 and classified as problematic. This issue affects some unknown processing of the file /classes/SystemSettings.php?f=update_settings. The manipulation of the argument name leads to cross site scripting.

The identification of this vulnerability is CVE-2024-35351. The attack may be initiated remotely. There is no exploit available.