CVE-2025-4912 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability has been found in SourceCodester Student Result Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown f…
Medium CVSS: 5.3

CVE-2025-4912

A vulnerability has been found in SourceCodester Student Result Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/core/update_student.php of the component Image File Handler. The manipulation of the argument old_photo leads to path traversal. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Vendor
Munyweki
Product
Student Result Management System
CWE
CWE-22
Yayın Tarihi
2025-05-19 05:15:18
Güncelleme
2025-05-21 17:41:21
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-22 Student Result Management System MEDIUM Munyweki 2025

Referanslar

https://magnificent-dill-351.notion.site/Arbitrary-File-Delete-of-update_student-in-SRMS-1-0-1f5c693918ed8047ad31d03c6034b4f6 https://vuldb.com/?ctiid.309469 https://vuldb.com/?id.309469 https://vuldb.com/?submit.579089 https://www.sourcecodester.com/ https://magnificent-dill-351.notion.site/Arbitrary-File-Delete-of-update_student-in-SRMS-1-0-1f5c693918ed8047ad31d03c6034b4f6