CNNVD-202512-1076 Information

Dec 08, 2025 cve

CNNVD ID

CNNVD-202512-1076

CVE-2025-14206

CNNVD Published: 2025-12-08

Description (Chinese)

SourceCodester Online Student Clearance System是SourceCodester开源的一个在线学生管理系统。 SourceCodester Online Student Clearance System 1.0版本存在授权问题漏洞，该漏洞源于对文件/Admin/delete-fee.php中参数ID的错误操作，可能导致权限不当。

Description (English)

ServiceCodester Online Clearance System is an online student management system open to ServiceCodester. There is a mandate gap in version 1.0 of SourceCodester Online Service System, which stems from an error in the performance of parameter ID in document/Admin/delete-fee.php, which may lead to inappropriate privileges.

Hazard Level

High

Vulnerability Type

授权问题

Affected Vendor

SourceCodester

Published

2025-12-08

Last Modified

2026-02-24

References

https://github.com/rassec2/dbcve/issues/8 https://vuldb.com/?ctiid.334649 https://vuldb.com/?id.334649 https://vuldb.com/?submit.700465 https://www.sourcecodester.com/ https://access.redhat.com/security/cve/cve-2025-14206

Share on: