CVE-2025-4898 – SourceCodester Student Result Management System Logo File Handler Remote Path Traversal Vulnerability

May 18, 2025

CVE ID : CVE-2025-4898

Published : May 18, 2025, 10:15 p.m. | 2 hours, 9 minutes ago

Description : A vulnerability was found in SourceCodester Student Result Management System 1.0. It has been declared as critical. This vulnerability affects the function unlink of the file update_system.php of the component Logo File Handler. The manipulation of the argument old_logo leads to path traversal. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 5.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4899 – Campcodes Sales and Inventory System SQL Injection Vulnerability

Next Article CVE-2025-4897 – Tenda A15 HTTP POST Request Handler Buffer Overflow

10 Ways Node.js Development Boosts AI & Real-Time Data (2025-2026 Edition)

Looking to Outsource React.js Development? Here’s What Top Agencies Are Doing Right

Beyond The Hype: What AI Can Really Do For Product Design

BrowserStack launches Chrome extension that bundles 10+ manual web testing tools

How much RAM does your Linux PC really need in 2025?

Have solar at home? Supercharge that investment with this other crucial component

I replaced my MacBook charger with this compact wall unit – and wish I’d done it sooner

5 reasons to switch to an immutable Linux distro today – and which to try first

Sentry Adds Logs Support for Laravel Apps

Sentry Adds Logs Support for Laravel Apps

Efficient Context Management with Laravel’s Remember Functions

Laravel Devtoolbox: Your Swiss Army Knife Artisan CLI

From plateau predictions to buggy rollouts — Bill Gates’ GPT-5 skepticism looks strangely accurate

From plateau predictions to buggy rollouts — Bill Gates’ GPT-5 skepticism looks strangely accurate

We gave OpenAI’s open-source AI a kid’s test — here’s what happened

With GTA 6, next-gen exclusives, and a console comeback on the horizon, Xbox risks sitting on the sidelines — here’s why

CVE-2025-4898 – SourceCodester Student Result Management System Logo File Handler Remote Path Traversal Vulnerability

Workday Staff Fall to Social Engineering; Hackers Access Third-Party CRM Platform

Get Ready for the Black Hat USA 2025 CISO Podcast Series from The Cyber Express and Suraksha Catalyst

Sam Altman says ChatGPT’s viral Ghibli effect “forced OpenAI to do a lot of unnatural things”

CVE-2025-6649 – PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure

CVE-2025-3365 – Apache File Path Traversal Vulnerability

CVE-2025-50492 – PHPGurukul e-Diary Management System Session Hijacking Vulnerability

CVE-2025-52809 – John Russell National Weather Service Alerts PHP Local File Inclusion

Microsoft’s extra year of free Windows 10 security updates feels like a last-minute snooze button — while groups like “The Restart Project” still want to help users

Report shows overinflated opinion of infrastructure automation excellence

CVE-2025-2504 – Apache HTTP Server Cross Site Scripting

CVE-2025-4898 – SourceCodester Student Result Management System Logo File Handler Remote Path Traversal Vulnerability

Related Posts