CVE-2025-5722

Name of the Vulnerable Software and Affected Versions SourceCodester Student Result Management System version 1.0

Description A vulnerability has been found in the SourceCodester Student Result Management System, classified as problematic. This issue affects unknown code of the file /script/academic/terms of the component Add Academic Term. The manipulation of the Academic Term argument leads to cross-site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Recommendations As a temporary workaround, consider disabling the Add Academic Term component until a patch is available. Restrict access to the /script/academic/terms file to minimize the risk of exploitation. Avoid using the Academic Term argument in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.