PT-2025-21855 · Unknown · Sourcecodester Online Student Clearance System
Clausius Fan
·
Published
2025-05-18
·
Updated
2025-05-18
·
CVE-2025-4887
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
SourceCodester Online Student Clearance System version 1.0
Description
A vulnerability has been found in the SourceCodester Online Student Clearance System, affecting some unknown functionality. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Recommendations
For SourceCodester Online Student Clearance System version 1.0, consider implementing security measures to prevent cross-site request forgery attacks, such as validating user requests and ensuring proper authentication mechanisms are in place. As a temporary workaround, consider restricting access to sensitive functionalities until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Missing Authorization
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Sourcecodester Online Student Clearance System