PT-2025-38149 · Sourcecodester · Online Student Management System

Quchunyi2

Published

2025-09-17

Updated

2025-09-17

CVE-2025-10593

CVSS v2.0

6.5

Vector

AV:N/AC:L/Au:S/C:P/I:P/A:P

A vulnerability was detected in SourceCodester Online Student File Management System 1.0. Affected is an unknown function of the file /admin/update student.php. Performing manipulation of the argument stud id results in sql injection. It is possible to initiate the attack remotely. The exploit is now public and may be used.

Exploit

Fix

Special Elements Injection

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-74CWE-89

Related Identifiers

CVE-2025-10593

Affected Products

Online Student Management System

PT-2025-38149 · Sourcecodester · Online Student Management System

Weakness Enumeration

Related Identifiers

Affected Products

References · 6