CVE-2025-9690

Medium CVSS: 5.3

A flaw has been found in SourceCodester Advanced School Management System 1.0. This affects an unknown function of the file /index.php/stock/vendordetails. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been published and may be used.

Vendor

Donbermoy

Product

Advanced School Management System

CWE

CWE-74

Yayın Tarihi

2025-08-30 14:15:41

Güncelleme

2025-09-04 16:49:30

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Advanced School Management System MEDIUM Donbermoy 2025

Referanslar

https://github.com/1ithos/CVE/issues/1 https://vuldb.com/?ctiid.321902 https://vuldb.com/?id.321902 https://www.sourcecodester.com/ https://github.com/1ithos/CVE/issues/1

Benzer Kayıtlar

Medium

CVE-2025-56608

The SourceCodester Android application "Corona Virus Tracker App India" 1.0 uses MD5 for digest authentication in `OkHtt…

Medium

CVE-2025-9833

A vulnerability was detected in SourceCodester Online Farm Management System 1.0. Affected by this vulnerability is an u…

Medium

CVE-2025-9689

A vulnerability was detected in SourceCodester Advanced School Management System 1.0. The impacted element is an unknown…

Medium

CVE-2025-9306

A vulnerability was detected in SourceCodester Advanced School Management System 1.0. The impacted element is an unknown…

Medium

CVE-2025-4504

A vulnerability was found in SourceCodester Online College Library System 1.0. It has been classified as critical. Affec…

Medium

CVE-2025-4313

A vulnerability, which was classified as critical, was found in SourceCodester Advanced Web Store 1.0. Affected is an un…