CVE-2025-10088

Medium CVSS: 5.1

A vulnerability was detected in SourceCodester Time Tracker 1.0. The affected element is an unknown function of the file /index.html. Performing manipulation of the argument project-name results in cross site scripting. The attack may be initiated remotely. The exploit is now public and may be used.

Vendor

Rems

Product

Personal Time Tracker

CWE

CWE-79

Yayın Tarihi

2025-09-08 07:15:35

Güncelleme

2025-09-08 20:38:45

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-79 Personal Time Tracker MEDIUM Rems 2025

Referanslar

https://github.com/drew-byte/Personal-Time-Tracker-V1-POC https://vuldb.com/?ctiid.323044 https://vuldb.com/?id.323044 https://vuldb.com/?submit.644841 https://www.sourcecodester.com/

Benzer Kayıtlar

Medium

CVE-2025-63640

Sourcecodester Medicine Reminder App v1.0 is vulnerable to Cross-Site Scripting (XSS) in the "Medicine Name" and "Notes…

Medium

CVE-2025-63716

The SourceCodester Leads Manager Tool v1.0 is vulnerable to Cross-Site Request Forgery (CSRF) attacks that allow unautho…

Medium

CVE-2025-60313

Sourcecodester Link Status Checker 1.0 is vulnerable to a Cross-Site Scripting (XSS) in the Enter URLs to check input fi…

Medium

CVE-2025-60312

Sourcecodester Markdown to HTML Converter v1.0 is vulnerable to a Cross-Site Scripting (XSS) in the "Markdown Input" fie…

Medium

CVE-2025-10410

A security vulnerability has been detected in SourceCodester Link Status Checker 1.0. This vulnerability affects unknown…

Medium

CVE-2025-6345

A vulnerability was found in SourceCodester My Food Recipe 1.0 and classified as problematic. Affected by this issue is…