CVE-2025-13586

Medium CVSS: 5.1

A flaw has been found in SourceCodester Online Student Clearance System 1.0. Impacted is an unknown function of the file /Admin/changepassword.php. This manipulation of the argument txtconfirm_password causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may be used.

Vendor

Senior-walter

Product

Online Student Clearance System

CWE

CWE-74

Yayın Tarihi

2025-11-24 07:16:04

Güncelleme

2025-12-02 03:09:12

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Online Student Clearance System MEDIUM Senior-walter 2025

Referanslar

https://github.com/CaseyW33/CVE/issues/2 https://vuldb.com/?ctiid.333350 https://vuldb.com/?id.333350 https://vuldb.com/?submit.700130 https://www.sourcecodester.com/

Benzer Kayıtlar

High

CVE-2026-30573

A Business Logic vulnerability exists in SourceCodester Pharmacy Product Management System 1.0. The vulnerability is loc…

High

CVE-2026-30576

A Business Logic vulnerability exists in SourceCodester Pharmacy Product Management System 1.0 in the add-stock.php file…

High

CVE-2026-30574

A Business Logic vulnerability exists in SourceCodester Pharmacy Product Management System 1.0 in the add-sales.php file…

High

CVE-2026-30575

A Business Logic vulnerability exists in SourceCodester Pharmacy Product Management System 1.0 in the add-stock.php file…

Medium

CVE-2026-3766

A security flaw has been discovered in SourceCodester Web-based Pharmacy Product Management System 1.0. This impacts an…

Low

CVE-2026-3401

A weakness has been identified in SourceCodester Web-based Pharmacy Product Management System 1.0. This affects an unkno…