There is a Stored-XSS vulnerability in studentmanager

After logging in, modifying the 'username' parameter of the [student list] can cause a Stored XSS (Cross-Site Scripting) attack.
<img width="1352" alt="image" src="https://github.com/ZeroWdd/studentmanager/assets/56468203/3d3a1e96-5eef-44c6-ac98-a73da625b122">
<img width="957" alt="image" src="https://github.com/ZeroWdd/studentmanager/assets/56468203/fa270abd-e3ee-48bd-b49d-9ea811222e92">
