CVE-2025-4912 – SourceCodester Student Result Management System Image File Handler Remote Path Traversal Vulnerability

May 19, 2025

CVE ID : CVE-2025-4912

Published : May 19, 2025, 5:15 a.m. | 1 hour, 45 minutes ago

Description : A vulnerability has been found in SourceCodester Student Result Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/core/update_student.php of the component Image File Handler. The manipulation of the argument old_photo leads to path traversal. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 5.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-1625 – Qi Blocks WordPress Stored Cross-Site Scripting Vulnerability

Next Article CVE-2025-4911 – A vulnerability, which was classified as critical,

Mirantis reveals Lens Prism, an AI copilot for operating Kubernetes clusters

Avoid these common platform engineering mistakes

Full-Stack Techies vs Toptal: Which Is Better for React.js Outsourcing?

The AI productivity paradox in software engineering: Balancing efficiency and human skill retention

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Capcom reports that its Steam game sales have risen massively — despite flagship titles like Monster Hunter Wilds receiving profuse backlash from PC players

Cloudflare is fighting to safeguard “the future of the web itself” — standing directly in the way of leading AI firms

Microsoft reportedly lacks the know-how to fully leverage OpenAI’s tech — despite holding IP rights

PHP 8.5.0 Alpha 1 available for testing

PHP 8.5.0 Alpha 1 available for testing

Recording cross browser compatible media

Celebrating Perficient’s Third Databricks Champion

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Capcom reports that its Steam game sales have risen massively — despite flagship titles like Monster Hunter Wilds receiving profuse backlash from PC players

Cloudflare is fighting to safeguard “the future of the web itself” — standing directly in the way of leading AI firms

CVE-2025-4912 – SourceCodester Student Result Management System Image File Handler Remote Path Traversal Vulnerability

CVE-2025-5372 – OpenSSL SSH Key Derivation Buffer Initialization Vulnerability

CVE-2025-6944 – Uncode Core WordPress Stored Cross-Site Scripting

CVE-2025-2776 – SysAid XXE Vulnerability

CVE-2025-52554 – n8n Unauthorized Execution Stop Vulnerability

Why Data Validation Testing Is Essential for ETL Success

CVE-2025-32915 – Checkmk Incorrect Package Permissions Vulnerability

Microsoft Fixes 78 Flaws, 5 Zero-Days Exploited; CVSS 10 Bug Impacts Azure DevOps Server

CVE-2025-45427 – Tenda AC9 Stack Overflow Vulnerability

What’s the point of Headless?

Why AI Can’t Be Trusted Without QA

CVE-2025-4912 – SourceCodester Student Result Management System Image File Handler Remote Path Traversal Vulnerability

Related Posts