CVE-2025-6340

A vulnerability classified as problematic has been found in code-projects School Fees Payment System 1.0. This affects an unknown part of the file /branch.php. The manipulation of the argument Branch/Address/Detail leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
References
Link Resource
https://code-projects.org/ Product
https://github.com/tuooo/CVE/issues/14 Exploit Issue Tracking Third Party Advisory
https://vuldb.com/?ctiid.313335 Permissions Required VDB Entry
https://vuldb.com/?id.313335 Third Party Advisory VDB Entry
https://vuldb.com/?submit.596998 Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

cpe:2.3:a:fabian:school_fees_payment_system:1.0:*:*:*:*:*:*:*

History

26 Jun 2025, 18:16

Type Values Removed Values Added
CPE cpe:2.3:a:fabian:school_fees_payment_system:1.0:*:*:*:*:*:*:*
First Time Fabian school Fees Payment System
Fabian
References () https://code-projects.org/ - () https://code-projects.org/ - Product
References () https://github.com/tuooo/CVE/issues/14 - () https://github.com/tuooo/CVE/issues/14 - Exploit, Issue Tracking, Third Party Advisory
References () https://vuldb.com/?ctiid.313335 - () https://vuldb.com/?ctiid.313335 - Permissions Required, VDB Entry
References () https://vuldb.com/?id.313335 - () https://vuldb.com/?id.313335 - Third Party Advisory, VDB Entry
References () https://vuldb.com/?submit.596998 - () https://vuldb.com/?submit.596998 - Third Party Advisory, VDB Entry
Summary
  • (es) Se ha encontrado una vulnerabilidad clasificada como problemática en code-projects School Fees Payment System 1.0. Esta afecta a una parte desconocida del archivo /branch.php. La manipulación del argumento Branch/Address/Detail provoca ataques de cross site scripting. El ataque puede ejecutarse en remoto. Se ha hecho público el exploit y puede que sea utilizado.
First Time Fabian school Fees Payment System
Fabian
References () https://code-projects.org/ - () https://code-projects.org/ - Product
References () https://github.com/tuooo/CVE/issues/14 - () https://github.com/tuooo/CVE/issues/14 - Exploit, Issue Tracking, Third Party Advisory
References () https://vuldb.com/?ctiid.313335 - () https://vuldb.com/?ctiid.313335 - Permissions Required, VDB Entry
References () https://vuldb.com/?id.313335 - () https://vuldb.com/?id.313335 - Third Party Advisory, VDB Entry
References () https://vuldb.com/?submit.596998 - () https://vuldb.com/?submit.596998 - Third Party Advisory, VDB Entry
CPE cpe:2.3:a:fabian:school_fees_payment_system:1.0:*:*:*:*:*:*:*

23 Jun 2025, 20:16

Type Values Removed Values Added
Summary
  • (es) Se ha encontrado una vulnerabilidad clasificada como problemática en code-projects School Fees Payment System 1.0. Esta afecta a una parte desconocida del archivo /branch.php. La manipulación del argumento Branch/Address/Detail provoca ataques de cross site scripting. El ataque puede ejecutarse en remoto. Se ha hecho público el exploit y puede que sea utilizado.

20 Jun 2025, 13:15

Type Values Removed Values Added
New CVE
Summary
  • (es) Se ha encontrado una vulnerabilidad clasificada como problemática en code-projects School Fees Payment System 1.0. Esta afecta a una parte desconocida del archivo /branch.php. La manipulación del argumento Branch/Address/Detail provoca ataques de cross site scripting. El ataque puede ejecutarse en remoto. Se ha hecho público el exploit y puede que sea utilizado.
References () https://code-projects.org/ - Product () https://code-projects.org/ -
References () https://github.com/tuooo/CVE/issues/14 - Exploit, Issue Tracking, Third Party Advisory () https://github.com/tuooo/CVE/issues/14 -
References () https://vuldb.com/?ctiid.313335 - Permissions Required, VDB Entry () https://vuldb.com/?ctiid.313335 -
References () https://vuldb.com/?id.313335 - Third Party Advisory, VDB Entry () https://vuldb.com/?id.313335 -
References () https://vuldb.com/?submit.596998 - Third Party Advisory, VDB Entry () https://vuldb.com/?submit.596998 -
CPE cpe:2.3:a:fabian:school_fees_payment_system:1.0:*:*:*:*:*:*:*

Information

Published : 2025-06-20 13:15

Updated : 2025-06-26 18:16


NVD link : CVE-2025-6340

Mitre link : CVE-2025-6340

CVE.ORG link : CVE-2025-6340


JSON object : View

Products Affected

fabian

  • school_fees_payment_system
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-94

Improper Control of Generation of Code ('Code Injection')