Sourcecodester Advanced School Management System vulnerabilities

3 known vulnerabilities affecting sourcecodester/advanced_school_management_system.

Total CVEs

3

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

MEDIUM3

Vulnerabilities

Page 1 of 1

CVE-2025-9690MEDIUMCVSS 5.3v1.02025-08-30

CVE-2025-9690 [MEDIUM] CWE-74 CVE-2025-9690: A flaw has been found in SourceCodester Advanced School Management System 1.0. This affects an unkno A flaw has been found in SourceCodester Advanced School Management System 1.0. This affects an unknown function of the file /index.php/stock/vendordetails. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been published and may be used.

CVE-2025-9689MEDIUMCVSS 5.3v1.02025-08-30

CVE-2025-9689 [MEDIUM] CWE-74 CVE-2025-9689: A vulnerability was detected in SourceCodester Advanced School Management System 1.0. The impacted e A vulnerability was detected in SourceCodester Advanced School Management System 1.0. The impacted element is an unknown function of the file /index.php/stock/item_select. The manipulation of the argument q results in sql injection. It is possible to launch the attack remotely. The exploit is now public and may be used.

CVE-2025-9306MEDIUMCVSS 5.1v1.02025-08-21

CVE-2025-9306 [MEDIUM] CWE-79 CVE-2025-9306: A vulnerability was detected in SourceCodester Advanced School Management System 1.0. The impacted e A vulnerability was detected in SourceCodester Advanced School Management System 1.0. The impacted element is an unknown function of the file /index.php/notice/addNotice. The manipulation of the argument noticeSubject results in cross site scripting. It is possible to launch the attack remotely. The exploit is now public and may be used.