CVE-2025-6477 – SourceCodester Student Result Management System Cross-Site Scripting Vulnerability

June 22, 2025

CVE ID : CVE-2025-6477

Published : June 22, 2025, 1:15 p.m. | 28 minutes ago

Description : A vulnerability was found in SourceCodester Student Result Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /script/admin/system of the component System Settings Page. The manipulation of the argument School Name leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 2.4 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous Article“We’re creating a game that’s steeped in dark fantasy elements” — Capcom talks building a samurai adventure with Onimusha: Way of the Sword

Next Article CVE-2025-6476 – SourceCodester Gym Management System Cross-Site Request Forgery Vulnerability

Elastic simplifies log analytics for SREs and developers with launch of Log Essentials

OpenAI launches GPT-5

Melissa brings its data quality solutions to Azure with new SSIS integration

Automating Design Systems: Tips And Resources For Getting Started

This $180 mini projector has no business being this good for the price

GPT-5 is finally here, and you can access it for free today – no subscription needed

Changing this Android setting instantly doubled my phone speed (Samsung and Google models included)

ChatGPT can now talk nerdy to you – plus more personalities and other upgrades beyond GPT-5

Advanced Application Architecture through Laravel’s Service Container Management

Advanced Application Architecture through Laravel’s Service Container Management

Switch Between Personas in Laravel With the MultiPersona Package

AI-Driven Smart Tagging and Metadata in AEM Assets

Bill Gates on AI’s Impact: ‘Be Curious, Read, and Use the Latest Tools’

Bill Gates on AI’s Impact: ‘Be Curious, Read, and Use the Latest Tools’

Halo Infinite’s Fall Update: New Features and Modes to Revive the Game?

Forza Motorsport’s Future in Jeopardy: Fans Demand Clarity from Microsoft

CVE-2025-6477 – SourceCodester Student Result Management System Cross-Site Scripting Vulnerability

Microsoft to Pull Plug on Shared EWS Access in Hybrid Exchange by October

Google Confirms Salesforce Database Breach by ShinyHunters Group

Is DeepSeek AI a “profound threat” to U.S. national security? A report suggests the Chinese startup unlawfully stole OpenAI’s data, too.

Welcome to Maintainer Month: Events, exclusive discounts, and a new security challenge

Crucial’s new PCIe 5.0 SSD is the first high-performance drive I’m considering putting into a laptop

Improved Sample Complexity for Private Nonsmooth Nonconvex Optimization

This Call of Duty game just hit Xbox Game Pass, but it’s infested with RCE hackers — I’d take cover and avoid playing until there’s a fix

Step-by-Step Guide to Creating a Recommendation System

Office and Exchange Support Ends October 2025 as Microsoft Shifts to Subscriptions

CVE-2025-6288 – PHPGurukul Bus Pass Management System Cross Site Scripting (XSS)

CVE-2025-6477 – SourceCodester Student Result Management System Cross-Site Scripting Vulnerability

Related Posts