CVE-2025-11485

Medium CVSS: 4.8

A vulnerability was determined in SourceCodester Student Grades Management System 1.0. Affected is the function add_user of the file /admin.php of the component Manage Users Page. This manipulation of the argument first_name/last_name causes cross site scripting. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized.

Vendor

Remyandrade

Product

Student Grades Management System

CWE

CWE-79

Yayın Tarihi

2025-10-08 17:15:33

Güncelleme

2025-10-09 16:02:44

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-79 Student Grades Management System MEDIUM Remyandrade 2025

Referanslar

https://github.com/sidzeroday/sourcecodester_cve/blob/main/README.md https://vuldb.com/?ctiid.327602 https://vuldb.com/?id.327602 https://vuldb.com/?submit.667406 https://www.sourcecodester.com/ https://github.com/sidzeroday/sourcecodester_cve/blob/main/README.md

Benzer Kayıtlar

Medium

CVE-2026-3695

A vulnerability has been found in SourceCodester Modern Image Gallery App 1.0. Impacted is an unknown function of the fi…

Medium

CVE-2026-3302

A weakness has been identified in SourceCodester Doctor Appointment System 1.0. Affected by this issue is some unknown f…

Medium

CVE-2026-3163

A vulnerability has been found in SourceCodester Website Link Extractor 1.0. This vulnerability affects the function fil…

Medium

CVE-2026-3070

A vulnerability was detected in SourceCodester Modern Image Gallery App 1.0. Affected by this vulnerability is an unknow…

Critical

CVE-2025-70457

A Remote Code Execution (RCE) vulnerability exists in Sourcecodester Modern Image Gallery App v1.0 within the gallery/up…

Medium

CVE-2025-70458

A DOM-based Cross-Site Scripting (XSS) vulnerability exists in the DomainCheckerApp class within domain/script.js of Sou…