CVE-2025-15052 | code-projects Student Information System 1.0 /profile.php firstname/lastname cross site scripting

Inserito da Angelo Barbosa | Dic 23, 2025 | CVE

A vulnerability identified as problematic has been detected in code-projects Student Information System 1.0. This vulnerability affects unknown code of the file /profile.php. Performing manipulation of the argument firstname/lastname results in cross site scripting.

This vulnerability is reported as CVE-2025-15052. The attack is possible to be carried out remotely. Moreover, an exploit is present.

CVE-2025-15052 | code-projects Student Information System 1.0 /profile.php firstname/lastname cross site scripting

Post correlati

CVE-2025-2114 | Shenzhen Sixun Software Sixun Shanghui Group Business Management System 7 Reset Password Interface OperatorStop.asp OperId improper authorization

CVE-2025-22745 | Björn Weinbrenner Navigation Du Lapin Blanc Plugin up to 1.1.1 on WordPress cross site scripting

CVE-2024-28146 | Image Access Scan2Net Firmware Update hard-coded credentials

CVE-2025-10494 | Motors Plugin up to 1.4.89 on WordPress denial of service