CVE-2025-1955

Name of the Vulnerable Software and Affected Versions code-projects Online Class and Exam Scheduling System version 1.0

Description A issue was found in the system, affecting some unknown functionality of the file /Scheduling/scheduling/pages/profile.php. The manipulation of the username argument leads to cross site scripting. The attack can be launched remotely.

Recommendations For code-projects Online Class and Exam Scheduling System version 1.0, consider restricting access to the /Scheduling/scheduling/pages/profile.php file until a fix is available, and avoid using the username argument in this context to minimize the risk of exploitation.