ГлавнаяУязвимости → CVE-2025-9837
7.3высокая

CVE-2025-9837

Описание

A vulnerability was determined in itsourcecode Student Information Management System 1.0. This issue affects some unknown processing of the file /admin/modules/student/index.php. This manipulation of the argument studentId causes sql injection. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized.

Затрагиваемое ПО
Itsourcecode Student information management system
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://github.com/hjsjbsg/record-for-own/issues/4https://itsourcecode.com/https://vuldb.com/?ctiid.322184https://vuldb.com/?id.322184https://vuldb.com/?submit.641750