{"id":6491,"date":"2025-06-05T23:56:33","date_gmt":"2025-06-05T23:56:33","guid":{"rendered":"http:\/\/localhost\/?p=6491"},"modified":"2025-06-05T23:56:33","modified_gmt":"2025-06-05T23:56:33","slug":"sourcecodester-student-result-management-system-profile-setting-page-updateprofile-cross-site-script","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=6491","title":{"rendered":"SourceCodester Student Result Management System Profile Setting Page update_profile cross site scripting"},"content":{"rendered":"
\n

CVE Details<\/h2>\n
\n
\n

Basic Information<\/h3>\n\n\n\n\n\n
Title<\/th>\nSourceCodester Student Result Management System Profile Setting Page update_profile cross site scripting<\/td>\n<\/tr>\n
Type<\/th>\ncve<\/td>\n<\/tr>\n
Published<\/th>\n2025-06-06T04:00:17.054Z<\/td>\n<\/tr>\n
Last Seen<\/th>\n<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Product Information<\/h3>\n\n\n\n\n
Vendor<\/th>\nSourceCodester<\/td>\n<\/tr>\n
Product<\/th>\nStudent Result Management System<\/td>\n<\/tr>\n
Version<\/th>\n1.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n<\/div>\n
\n

CVSS Information<\/h3>\n\n\n\n\n\n\n
Base Score<\/th>\n4.8 (MEDIUM)<\/td>\n<\/tr>\n
Attack Vector<\/th>\nCVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:H\/UI:P\/VC:N\/VI:L\/VA:N\/SC:N\/SI:N\/SA:N\/E:P<\/td>\n<\/tr>\n
Confidentiality Impact<\/th>\n<\/td>\n<\/tr>\n
Integrity Impact<\/th>\n<\/td>\n<\/tr>\n
Availability Impact<\/th>\n<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

AI Analysis<\/h3>\n\n\n\n\n\n\n
AI Description<\/th>\nThe vulnerability allows remote attackers to perform cross-site scripting (XSS) attacks on the Student Result Management System’s Profile Setting Page. This can be exploited to inject malicious scripts that may steal user data or perform other malicious actions.<\/td>\n<\/tr>\n
AI Severity<\/th>\nMedium<\/td>\n<\/tr>\n
Vendor<\/th>\nSourceCodester<\/td>\n<\/tr>\n
Product<\/th>\nStudent Result Management System<\/td>\n<\/tr>\n
Affected Version<\/th>\n1.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Affected Products<\/h4>\n