A vulnerability, which was classified as problematic, was found in SourceCodester Student Result Management System 1.0. This affects an unknown part of the file /script/academic/core/update_profile of the component Profile Setting Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
References
Link | Resource |
---|---|
https://github.com/0xEricTee/CVE/blob/main/Research/Stored_XSS.md | Exploit Third Party Advisory |
https://github.com/0xEricTee/CVE/blob/main/Research/Stored_XSS.md#field-1-email-field-in-profile-setting | Exploit Third Party Advisory |
https://vuldb.com/?ctiid.311241 | Permissions Required VDB Entry |
https://vuldb.com/?id.311241 | Third Party Advisory VDB Entry |
https://vuldb.com/?submit.590569 | Third Party Advisory VDB Entry |
https://www.sourcecodester.com/ | Product |
https://github.com/0xEricTee/CVE/blob/main/Research/Stored_XSS.md | Exploit Third Party Advisory |
Configurations
History
10 Jun 2025, 15:47
Type | Values Removed | Values Added |
---|---|---|
First Time |
Razormist student Result Management System
Razormist |
|
CPE | cpe:2.3:a:razormist:student_result_management_system:1.0:*:*:*:*:*:*:* | |
References | () https://github.com/0xEricTee/CVE/blob/main/Research/Stored_XSS.md - Exploit, Third Party Advisory | |
References | () https://github.com/0xEricTee/CVE/blob/main/Research/Stored_XSS.md#field-1-email-field-in-profile-setting - Exploit, Third Party Advisory | |
References | () https://vuldb.com/?ctiid.311241 - Permissions Required, VDB Entry | |
References | () https://vuldb.com/?id.311241 - Third Party Advisory, VDB Entry | |
References | () https://vuldb.com/?submit.590569 - Third Party Advisory, VDB Entry | |
References | () https://www.sourcecodester.com/ - Product |
09 Jun 2025, 14:15
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/0xEricTee/CVE/blob/main/Research/Stored_XSS.md - |
06 Jun 2025, 14:07
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
06 Jun 2025, 04:16
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-06-06 04:16
Updated : 2025-06-10 15:47
NVD link : CVE-2025-5721
Mitre link : CVE-2025-5721
CVE.ORG link : CVE-2025-5721
JSON object : View
Products Affected
razormist
- student_result_management_system