Description
A flaw has been found in SourceCodester Student Grades Management System 1.0. This affects the function delete_user of the file /admin.php. Executing manipulation can lead to cross site scripting. The attack may be performed from remote. The exploit has been published and may be used.
Published: 2025-10-27
Score: 4.8 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 31 Oct 2025 20:45:00 +0000

Type Values Removed Values Added
First Time appeared Remyandrade
Remyandrade student Grades Management System
CPEs cpe:2.3:a:remyandrade:student_grades_management_system:1.0:*:*:*:*:*:*:*
Vendors & Products Remyandrade
Remyandrade student Grades Management System

Tue, 28 Oct 2025 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 28 Oct 2025 10:30:00 +0000

Type Values Removed Values Added
First Time appeared Sourcecodester
Sourcecodester student Grades Management System
Vendors & Products Sourcecodester
Sourcecodester student Grades Management System

Mon, 27 Oct 2025 23:30:00 +0000

Type Values Removed Values Added
Description A flaw has been found in SourceCodester Student Grades Management System 1.0. This affects the function delete_user of the file /admin.php. Executing manipulation can lead to cross site scripting. The attack may be performed from remote. The exploit has been published and may be used.
Title SourceCodester Student Grades Management System admin.php delete_user cross site scripting
Weaknesses CWE-79
CWE-94
References
Metrics cvssV2_0

{'score': 3.3, 'vector': 'AV:N/AC:L/Au:M/C:N/I:P/A:N/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 2.4, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 2.4, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 4.8, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Remyandrade Student Grades Management System
Sourcecodester Student Grades Management System
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2025-10-28T14:42:24.924Z

Reserved: 2025-10-27T12:22:18.881Z

Link: CVE-2025-12332

cve-icon Vulnrichment

Updated: 2025-10-28T14:41:28.989Z

cve-icon NVD

Status : Analyzed

Published: 2025-10-28T00:15:37.573

Modified: 2026-04-29T01:00:01.613

Link: CVE-2025-12332

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2025-10-28T10:24:07Z

Weaknesses