CVE-2025-4470 – SourceCodester Online Student Clearance System Cross-Site Scripting Vulnerability

May 9, 2025

CVE ID : CVE-2025-4470

Published : May 9, 2025, 7:16 a.m. | 4 hours, 51 minutes ago

Description : A vulnerability classified as problematic was found in SourceCodester Online Student Clearance System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/add-student.php. The manipulation of the argument Fullname leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

Severity: 2.4 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4471 – Apache Code-projects Jewelery Store Management System Stack Buffer Overflow Vulnerability

Next Article CVE-2025-4469 – SourceCodester Online Student Clearance System Cross Site Scripting Vulnerability

A Week In The Life Of An AI-Augmented Designer

This week in AI updates: Gemini Code Assist Agent Mode, GitHub’s Agents panel, and more (August 22, 2025)

Microsoft adds Copilot-powered debugging features for .NET in Visual Studio

Blackstone portfolio company R Systems Acquires Novigo Solutions, Strengthening its Product Engineering and Full-Stack Agentic-AI Capabilities

The best AirTag alternative for Samsung users is currently 30% off

One of the biggest new features on the Google Pixel 10 is also one of the most overlooked

I tested these viral ‘crush-proof’ Bluetooth speakers, and they’re not your average portables

I compared the best smartwatches from Google and Apple – and there’s a clear winner

MongoDB Data Types

MongoDB Data Types

Building Cross-Platform Alerts with Laravel’s Notification Framework

Add Notes Functionality to Eloquent Models With the Notable Package

Microsoft Teams updated with a feature you probably thought already existed — “Can you hear me?” is now a thing of the past

Microsoft Teams updated with a feature you probably thought already existed — “Can you hear me?” is now a thing of the past

Xbox Game Pass gets Gears of War: Reloaded, Dragon Age: The Veilguard, and more — here’s what is coming through the rest of August

Resident Evil ‘9’ Requiem has some of the most incredible lighting I’ve seen in a game — and Capcom uses it as a weapon

CVE-2025-4470 – SourceCodester Online Student Clearance System Cross-Site Scripting Vulnerability

Blue Locker ransomware hits critical infrastructure – is your organisation ready?

GeoServer Exploits, PolarEdge, and Gayfemboy Push Cybercrime Beyond Traditional Botnets

CVE-2025-4923 – SourceCodester Client Database Management System Unrestricted File Upload Vulnerability

Distribution Release: GParted Live 1.7.0-8

CVE-2025-3749 – Breeze Display for WordPress Stored Cross-Site Scripting Vulnerability

CVE-2025-5714 – SoluçõesCoop iSoluçõesWEB Profile Information Update Path Traversal Vulnerability

At a Time of Indo-Pak Conflict, Why a Digital Blackout Matters—and How to Do It

SEO in the Age of AI: Should Marketers Defend or Discover?

CVE-2025-32885 – “GoTenna v1 App Message Injection Vulnerability”

CVE-2025-46750 – SELogic BIOS Password Bypass Vulnerability

CVE-2025-4470 – SourceCodester Online Student Clearance System Cross-Site Scripting Vulnerability

Related Posts