CVE-2025-9306 | SourceCodester Advanced School Management System 1.0 addNotice noticeSubject cross site scripting

Inserito da Angelo Barbosa | Ago 21, 2025 | CVE

A vulnerability, which was classified as problematic, was found in SourceCodester Advanced School Management System 1.0. The impacted element is an unknown function of the file /index.php/notice/addNotice. The manipulation of the argument noticeSubject results in cross site scripting.

This vulnerability is known as CVE-2025-9306. It is possible to launch the attack remotely. Furthermore, an exploit is available.

CVE-2025-9306 | SourceCodester Advanced School Management System 1.0 addNotice noticeSubject cross site scripting

Post correlati

CVE-2025-1586 | code-projects Blood Bank System 1.0 /Blood/A-.php Bloodname cross site scripting

CVE-2024-40679 | IBM DB2/DB2 Connect Server 11.5 log file

CVE-2023-21586 | Adobe Acrobat Reader up to 20.005.30418/22.003.20281/22.003.20282 null pointer dereference (apsb23-01)

CVE-2023-42715 | Unisoc S8000 Telephony Service information disclosure