Sourcecodester Student Attendance Management System is an attendance management system used to maintain daily attendance records. A cross-site scripting vulnerability exists in Sourcecodester Student Attendance Management System version 1.0. The vulnerability stems from a lack of data validation filtering of user-supplied data and output data in the couse filed in index.php, which can be exploited by attackers to execute JavaScript code on the client-side execution of JavaScript code.