CNNVD-202511-3067 Information

CNNVD ID

CNNVD-202511-3067

Related CVE

CVE-2025-13784

• CNNVD Published: 2025-11-30

Description (Chinese)

Skuul school management system是Marvellous Ifezue个人开发者的一个学校管理系统。 Skuul School Management System 2.6.5及之前版本存在代码注入漏洞，该漏洞源于文件/dashboard/schools/1/edit中的SVG文件处理不当，可能导致跨站脚本攻击。

Description (English)

Skuul school management system is a school management system for Marvellous Ifezue personal developers. Skuul School Management System 2.6.5 and previous versions had a code infusion loophole, which stemmed from the improper handling of SVG files in the document/dashboard/schools/1/edit, which could lead to a cross-site script attack.

Hazard Level

Critical

Vulnerability Type

代码注入

Affected Vendor

个人开发者

Published

2025-11-30

Last Modified

2026-02-24

References

https://vuldb.com/?submit.689012 https://vuldb.com/?ctiid.333788 https://gist.github.com/thezeekhan/7fc54fd44bc5f318be0350b367b2d8ff https://vuldb.com/?id.333788 https://access.redhat.com/security/cve/cve-2025-13784