VYPR

School Express

by iNiLabs

CVEs (1)

  • CVE-2025-57205Sep 22, 2025
    risk 0.00cvss epss 0.00

    iNiLabs School Express (SMS Express) 6.2 is affected by a Stored Cross-Site Scripting (XSS) vulnerability in the content-management features available to authenticated admin users. The vulnerability resides in POSTed editor parameters submitted to the /posts/edit/{id} endpoint…