Unrated severityNVD Advisory· Published Nov 2, 2011· Updated Apr 29, 2026

CVE-2010-5010

Description

Cross-site scripting (XSS) vulnerability in schoolmv2/html/studentmain.php in SchoolMation 2.3 allows remote attackers to inject arbitrary web script or HTML via the session parameter.

Affected products

Schoolmation/Schoolmation
cpe:2.3:a:schoolmation:schoolmation:2.3:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

packetstormsecurity.org/1006-exploits/schoolmation-sqlxss.txtnvdExploit
www.exploit-db.com/exploits/13812/nvdExploit
secunia.com/advisories/40154nvdVendor Advisory
www.securityfocus.com/bid/40737nvdVendor Advisory
osvdb.org/65417nvd
securityreason.com/securityalert/8508nvd
exchange.xforce.ibmcloud.com/vulnerabilities/59346nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.004
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000