exploitDog

CVE-2025-52187

Опубликовано: 30 июл. 2025

Источник: nvd

CVSS3: 8.2

EPSS Низкий

Описание

GetProjectsIdea Create School Management System 1.0 is vulnerable to Cross Site Scripting (XSS) in my_profile_update_form1.php.

Ссылки

https://github.com/GetProjectsIdea/Create-School-Management-System-with-PHP-MySQL
Third Party Advisory
https://medium.com/@sanjay70023/cve-2025-52187-stored-xss-in-school-management-system-php-mysql-79cadcd6340f
Exploit
Third Party Advisory
http://seclists.org/fulldisclosure/2025/Jul/28

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:getprojects:create_school_management_system:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 10%

0.00036

Низкий

8.2 High

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-g3fm-ffgc-5m43

CVSS3: 8.2

github

6 месяцев назад

GetProjectsIdea Create School Management System 1.0 is vulnerable to Cross Site Scripting (XSS) in my_profile_update_form1.php.

EPSS

Процентиль: 10%

0.00036

Низкий

8.2 High

CVSS3

Дефекты

CWE-79