ГлавнаяУязвимости → CVE-2025-14940
7.3высокая

CVE-2025-14940

Описание

A vulnerability was determined in code-projects Scholars Tracking System 1.0. The affected element is an unknown function of the file /admin/delete_user.php. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized.

Затрагиваемое ПО
Fabian Scholars tracking system
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://code-projects.org/https://github.com/gx922/CVE/issues/1https://vuldb.com/?ctiid.337520https://vuldb.com/?id.337520https://vuldb.com/?submit.716120