CVE-2025-51967 | ProjectsAndPrograms School Management System 1.0 POST Parameter themeSet.php cross site scripting

Inserito da Angelo Barbosa | Ago 28, 2025 | CVE

A vulnerability identified as problematic has been detected in ProjectsAndPrograms School Management System 1.0. The impacted element is an unknown function of the file themeSet.php of the component POST Parameter Handler. This manipulation causes cross site scripting.

This vulnerability is tracked as CVE-2025-51967. The attack is possible to be carried out remotely. No exploit exists.

CVE-2025-51967 | ProjectsAndPrograms School Management System 1.0 POST Parameter themeSet.php cross site scripting

Post correlati

CVE-2024-54461 | Flutter File Selector up to 0.5.1+11 Internal File path traversal

CVE-2025-47629 | Mario Peshev WP-CRM System Plugin up to 3.4.1 on WordPress deserialization

CVE-2024-46647 | eNMS up to 4.7.1 upload_files path traversal

CVE-2024-4626 | JetWidgets for Elementor Plugin up to 1.0.17 on WordPress layout_type/id cross site scripting