CVE-2025-6473 – School Fees Payment System Cross-Site Scripting Vulnerability

June 22, 2025

CVE ID : CVE-2025-6473

Published : June 22, 2025, 11:15 a.m. | 2 hours, 28 minutes ago

Description : A vulnerability, which was classified as problematic, was found in code-projects School Fees Payment System 1.0. This affects an unknown part of the file /fees.php. The manipulation of the argument transcation_remark leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6474 – Code-projects Inventory Management System SQL Injection Vulnerability

Next Article CVE-2025-6472 – Code-projects Online Bidding System SQL Injection Vulnerability

Highlights

CVE-2025-30744 – Oracle Mobile Field Service HTTP Unauthorized Access and Data Manipulation Vulnerability

July 16, 2025

CVE ID : CVE-2025-30744

Published : July 15, 2025, 8:15 p.m. | 6 hours, 44 minutes ago

Description : Vulnerability in the Oracle Mobile Field Service product of Oracle E-Business Suite (component: Multiplatform Sync Errors). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Mobile Field Service. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Mobile Field Service accessible data as well as unauthorized access to critical data or complete access to all Oracle Mobile Field Service accessible data. CVSS 3.1 Base Score 8.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N).

Severity: 8.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Error’d: You Talkin’ to Me?

The Psychology Of Trust In AI: A Guide To Measuring And Designing For User Confidence

This week in AI updates: OpenAI Codex updates, Claude integration in Xcode 26, and more (September 19, 2025)

Report: The major factors driving employee disengagement in 2025

DistroWatch Weekly, Issue 1140

Distribution Release: DietPi 9.17

Development Release: Zorin OS 18 Beta

Distribution Release: IPFire 2.29 Core 197

@ts-ignore is almost always the worst option

@ts-ignore is almost always the worst option

MutativeJS v1.3.0 is out with massive performance gains

Student Performance Prediction System using Python Machine Learning (ML)

DistroWatch Weekly, Issue 1140

DistroWatch Weekly, Issue 1140

Distribution Release: DietPi 9.17

Hyprland Made Easy: Preconfigured Beautiful Distros

CVE-2025-6473 – School Fees Payment System Cross-Site Scripting Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Microsoft could ditch OpenAI’s high-stake for-profit talks: “Holding out is Microsoft’s nuclear option, and they are just making OpenAI sweat”

I changed 10 settings on my Pixel phone to instantly improve the user experience

CVE-2025-22470 – Siemens SIMATIC CL4/6NX Plus Lua File Execution Vulnerability

CVE-2025-5575 – PHPGurukul Dairy Farm Shop Management System SQL Injection Vulnerability

CVE-2025-30744 – Oracle Mobile Field Service HTTP Unauthorized Access and Data Manipulation Vulnerability

CVE-2025-37109 – HPE Telco Service Activator Cross-Site Scripting Vulnerability

First exploitation of Internet Explorer ‘Unicorn bug’ in-the-wild

CVE-2025-2474 – QNX SDP PCX Image Codec Out-of-Bounds Write Denial-of-Service/Execution of Arbitrary Code

CVE-2025-6473 – School Fees Payment System Cross-Site Scripting Vulnerability

Related Posts