CVE Details
Basic Information
| Title | SourceCodester Student Result Management System Manage Students Module manage_students cross site scripting |
|---|---|
| Type | cve |
| Published | 2025-06-22T12:00:15.476Z |
| Last Seen |
Product Information
| Vendor | SourceCodester |
|---|---|
| Product | Student Result Management System |
| Version | 1.0 |
CVSS Information
| Base Score | 4.8 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
AI Analysis
| AI Description | A cross-site scripting (XSS) vulnerability in the Manage Students Module of SourceCodester Student Result Management System version 1.0 allows remote attackers to inject malicious scripts, potentially leading to unauthorized actions or data theft. The CVSS score of 4.8 indicates a medium severity level. |
|---|---|
| AI Severity | Medium |
| Vendor | SourceCodester |
| Product | Student Result Management System |
| Affected Version | 1.0 |
Affected Products
- SourceCodester Student Result Management System 1.0
Additional Information
| CVE List | |
|---|---|
| CWE List | CWE-79, CWE-94 |
| Bulletin Family |
References
Description
A vulnerability was found in SourceCodester Student Result Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /script/admin/manage_students of the component Manage Students Module. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.