CNNVD-202511-2055 Information
CNNVD ID
CNNVD-202511-2055
Related CVE
- CNNVD Published: 2025-11-18
Description (Chinese)
SourceCodester Student Grades Management System是SourceCodester开源的一个学生成绩管理系统。 SourceCodester Student Grades Management System 1.0版本存在安全漏洞,该漏洞源于/classroom.php文件中create_classroom函数对name/description参数操作不当,可能导致存储型跨站脚本。
Description (English)
ServiceCodester Grades Management Systems is an open-source student achievement management system for ServiceCodester. The security loophole in version 1.0 of SourceCodester.Grades Management System arises from the inappropriate operation of the Create classroom function in the /classroom.php file on the name/description parameters, which may result in storage-type overstation scripts.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
SourceCodester
Published
2025-11-18
Last Modified
2026-02-24
References
http://sourcecodester.com http://student.com https://github.com/minhajultaivin/security-advisories/blob/main/CVE-2025-63892.md https://access.redhat.com/security/cve/cve-2025-63892
Share on: