CVE-2025-29568

medium

Description

A vulnerability has been discovered in the code-projects Online Class and Exam Scheduling System 1.0. The issue affects some unknown features in the file /Scheduling/pages/class_sched.php. Manipulating the class parameter can lead to cross-site scripting (XSS).

References

https://github.com/secloverwang/Vulnerability-recurrence/issues/1

https://github.com/secloverwang/-Vulnerability-recurrence/issues/1

Details

Source: Mitre, NVD

Published: 2025-04-24

Updated: 2025-04-24

Risk Information

CVSS v2

Base Score: 4.7

Vector: CVSS2#AV:N/AC:L/Au:M/C:P/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 4.8

Vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

Severity: Medium

EPSS

EPSS: 0.00027