CVE-2025-6477 | SourceCodester Student Result Management System 1.0 System Settings Page /script/admin/system School Name cross site scripting

Inserito da Angelo Barbosa | Giu 21, 2025 | CVE

A vulnerability was found in SourceCodester Student Result Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /script/admin/system of the component System Settings Page. The manipulation of the argument School Name leads to cross site scripting.

This vulnerability is known as CVE-2025-6477. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2025-6477 | SourceCodester Student Result Management System 1.0 System Settings Page /script/admin/system School Name cross site scripting

Post correlati

CVE-2024-34765 | Sensei Pro WC Paid Courses Plugin up to 4.23.1.1.23.1 on WordPress cross site scripting

CVE-2024-25089 | Malwarebytes Binisoft Windows Firewall Control prior 6.9.9.2 gRPC Named pipe Privilege Escalation

CVE-2023-38655 | Intel AMT/Standard Manageability unknown vulnerability (intel-sa-00999)

CVE-2024-12956 | 1000 Projects Portfolio Management System MCA 1.0 add_achievement_details.php ach_certy unrestricted upload