Sourcecodester Student Grading System vulnerabilities

CVE-2025-10420 [MEDIUM] CWE-74 CVE-2025-10420: A vulnerability was detected in SourceCodester Student Grading System 1.0. This affects an unknown p A vulnerability was detected in SourceCodester Student Grading System 1.0. This affects an unknown part of the file /form137.php. Performing manipulation of the argument ID results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used.

CVE-2025-10418 [MEDIUM] CWE-74 CVE-2025-10418: A weakness has been identified in SourceCodester Student Grading System 1.0. Affected by this vulner A weakness has been identified in SourceCodester Student Grading System 1.0. Affected by this vulnerability is an unknown functionality of the file /view_students.php. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited.

CVE-2025-10419 [MEDIUM] CWE-74 CVE-2025-10419: A security vulnerability has been detected in SourceCodester Student Grading System 1.0. Affected by A security vulnerability has been detected in SourceCodester Student Grading System 1.0. Affected by this issue is some unknown functionality of the file /del_promote.php. Such manipulation of the argument sy leads to sql injection. The attack can be launched remotely. The exploit has been disclosed publicly and may be used.

CVE-2025-10421 [MEDIUM] CWE-74 CVE-2025-10421: A flaw has been found in SourceCodester Student Grading System 1.0. This vulnerability affects unkno A flaw has been found in SourceCodester Student Grading System 1.0. This vulnerability affects unknown code of the file /update_account.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used.

CVE-2025-10407 [MEDIUM] CWE-74 CVE-2025-10407: A vulnerability was identified in SourceCodester Student Grading System 1.0. Affected by this vulner A vulnerability was identified in SourceCodester Student Grading System 1.0. Affected by this vulnerability is an unknown functionality of the file /view_user.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly available and might be used.

CVE-2025-10409 [MEDIUM] CWE-74 CVE-2025-10409: A weakness has been identified in SourceCodester Student Grading System 1.0. This affects an unknown A weakness has been identified in SourceCodester Student Grading System 1.0. This affects an unknown part of the file /rms.php?page=users. Executing manipulation of the argument fname can lead to sql injection. The attack can be launched remotely. The exploit has been made available to the public and could be exploited.

CVE-2025-10408 [MEDIUM] CWE-74 CVE-2025-10408: A security flaw has been discovered in SourceCodester Student Grading System 1.0. Affected by this i A security flaw has been discovered in SourceCodester Student Grading System 1.0. Affected by this issue is some unknown functionality of the file /edit_user.php. Performing manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit has been released to the public and may be exploited.