CVE-2025-4807 – SourceCodester Online Student Clearance System Directory Traversal Information Disclosure

May 16, 2025

CVE ID : CVE-2025-4807

Published : May 16, 2025, 8:15 p.m. | 48 minutes ago

Description : A vulnerability, which was classified as problematic, was found in SourceCodester Online Student Clearance System 1.0. This affects an unknown part. The manipulation leads to exposure of information through directory listing. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4808 – PHPGurukul Park Ticketing Management System SQL Injection Vulnerability

Next Article CVE-2025-4802 – GNU C Library LD_LIBRARY_PATH Path Traversal Vulnerability

Highlights

CVE-2025-2168 – Elementor Store Kit CSRF

May 1, 2025

CVE ID : CVE-2025-2168

Published : May 1, 2025, 4:16 a.m. | 3 hours, 55 minutes ago

Description : The Ultimate Store Kit Elementor Addons, Woocommerce Builder, EDD Builder, Elementor Store Builder, Product Grid, Product Table, Woocommerce Slider plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.4.1. This is due to missing or incorrect nonce validation on the dismiss() function. This makes it possible for unauthenticated attackers to set arbitrary user meta values to `1` which can be leveraged to lock and administrator out of their site via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The Psychology Of Color In UX Design And Digital Products

This week in AI dev tools: Claude Sonnet 4’s larger context window, ChatGPT updates, and more (August 15, 2025)

Sentry launches MCP monitoring tool

10 Benefits of Hiring a React.js Development Company (2025–2026 Edition)

I flew Insta360’s new ‘Antigravity’ drone around Los Angeles, and it was impossible to miss a shot

The $100 open-ear headphones that made me forget about my Shokz

5 quick and simple ways to greatly improve the quality of your headphones

Installing a UPS battery backup saved my work PC – here’s the full story

Maintaining Data Consistency with Laravel Database Transactions

Maintaining Data Consistency with Laravel Database Transactions

Building a Multi-Step Form With Laravel, Livewire, and MongoDB

Inertia Releases a New Form Component

Google’s Gemini AI had a full-on meltdown while coding — calling itself a fool, a disgrace, and begging for freedom from its own loop

Google’s Gemini AI had a full-on meltdown while coding — calling itself a fool, a disgrace, and begging for freedom from its own loop

Take-Two hints at $100 price tag for Grand Theft Auto VI — will it deliver on value?

ChatGPT Go offers GPT-5, image creation, and longer memory — all for $5 (if you’re lucky enough to live where it’s available)

CVE-2025-4807 – SourceCodester Online Student Clearance System Directory Traversal Information Disclosure

Cisco Warns of CVSS 10.0 FMC RADIUS Flaw Allowing Remote Code Execution

Zero Trust + AI: Privacy in the Age of Agentic AI

CVE-2025-32307 – LambertGroup Chameleon HTML5 Audio Player SQL Injection

EA announces turn-based tactics game Star Wars Zero Company ahead of a full unveiling

CVE-2025-49825 – Teleport Remote Authentication Bypass Vulnerability

Chromium abilita la riproduzione video HDR su Wayland

CVE-2025-2168 – Elementor Store Kit CSRF

Juan Cardona Leads Data Innovation Across Latin America

CVE-2025-49277 – Unfoldwp Blogprise PHP Remote File Inclusion Vulnerability

CodeSOD: The Firefox Fix

CVE-2025-4807 – SourceCodester Online Student Clearance System Directory Traversal Information Disclosure

Related Posts