CVE-2025-15052
CVE-2025-15052 affects code-projects Student Information System 1.0. The vulnerability resides in the file /profile.php, where manipulation of the firstname/lastname parameters enables cross-site scripting. This can be exploited remotely and there are public exploits. Multiple connected sources (...