CVE-2025-9689

Medium CVSS: 5.3

A vulnerability was detected in SourceCodester Advanced School Management System 1.0. The impacted element is an unknown function of the file /index.php/stock/item_select. The manipulation of the argument q results in sql injection. It is possible to launch the attack remotely. The exploit is now public and may be used.

Vendor

Donbermoy

Product

Advanced School Management System

CWE

CWE-74

Yayın Tarihi

2025-08-30 13:15:34

Güncelleme

2025-09-04 16:50:32

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Advanced School Management System MEDIUM Donbermoy 2025

Referanslar

https://github.com/1ithos/CVE/issues/1 https://vuldb.com/?ctiid.321901 https://vuldb.com/?id.321901 https://vuldb.com/?submit.638609 https://www.sourcecodester.com/ https://github.com/1ithos/CVE/issues/1

Benzer Kayıtlar

Medium

CVE-2025-56608

The SourceCodester Android application "Corona Virus Tracker App India" 1.0 uses MD5 for digest authentication in `OkHtt…

Medium

CVE-2025-9833

A vulnerability was detected in SourceCodester Online Farm Management System 1.0. Affected by this vulnerability is an u…

Medium

CVE-2025-9690

A flaw has been found in SourceCodester Advanced School Management System 1.0. This affects an unknown function of the f…

Medium

CVE-2025-9306

A vulnerability was detected in SourceCodester Advanced School Management System 1.0. The impacted element is an unknown…

Medium

CVE-2025-4504

A vulnerability was found in SourceCodester Online College Library System 1.0. It has been classified as critical. Affec…

Medium

CVE-2025-4313

A vulnerability, which was classified as critical, was found in SourceCodester Advanced Web Store 1.0. Affected is an un…