PT-2025-18165 · Unknown · Code-Projects Student Information Management System
Zzzxc
·
Published
2025-04-29
·
Updated
2025-04-29
·
CVE-2025-4063
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
code-projects Student Information Management System version 1.0
Description
A critical issue was found in the function
cancel(). The manipulation of the arguments first name and last name leads to a stack-based buffer overflow. This issue can be exploited locally.Recommendations
For code-projects Student Information Management System version 1.0, as a temporary workaround, consider disabling the
cancel() function until a patch is available. Restrict access to the first name and last name arguments in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.Exploit
Buffer Overflow
Stack Overflow
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Code-Projects Student Information Management System