CVE-2025-41107 | QDOCS Smart School 7.0 Query /online_admission firstname/lastname/guardian_name cross site scripting

Inserito da Angelo Barbosa | Nov 10, 2025 | CVE

A vulnerability was found in QDOCS Smart School 7.0. It has been rated as problematic. The affected element is an unknown function of the file /online_admission of the component Query Handler. The manipulation of the argument firstname/lastname/guardian_name leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-41107. The attack is possible to be carried out remotely. No exploit exists.

CVE-2025-41107 | QDOCS Smart School 7.0 Query /online_admission firstname/lastname/guardian_name cross site scripting

Post correlati

CVE-2024-38883 | Horizon Business Services Caterease up to 24.0.1.2405 TDS7 PreLogin Authentication downgrade

CVE-2025-53409 | QNAP File Station 5.5.6.5018 allocation of resources (qsa-25-38)

CVE-2023-41920 | Kiloview P1/P2 up to 4.8.2605 IP Address authentication bypass (NCSC-2024-0273)

CVE-2025-23552 | Texteller Plugin up to 1.3.0 on WordPress cross site scripting