CNNVD-202508-3336 Information

CNNVD ID

CNNVD-202508-3336

Related CVE

CVE-2025-51967

• CNNVD Published: 2025-08-28

Description (Chinese)

school-management-system是Shubham kumar个人开发者的一个PHP为学校或小型机构开发的学校管理系统。 school-management-system 1.0版本存在安全漏洞，该漏洞源于theme参数未清理用户输入，可能导致反射型跨站脚本攻击。

Description (English)

School-management-system is a PHP developed by Shubham Kumar Personal Developer for schools or small institutions. The school-manage-system version 1.0 has a security loophole, which originates from theme parameters that do not clean up user input and may lead to a reflective cross-site script attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-08-28

Last Modified

2026-02-24

References

https://github.com/jairajparyani/CVE-s/blob/main/CVE-2025-51967%20%E2%80%93%20Reflected%20XSS%20in%20School%20Management%20System https://nvd.nist.gov/vuln/detail/CVE-2025-51967