CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-11658

A vulnerability was detected in ProjectsAndPrograms School Management System up to 6b6fae5426044f89c08d0dd101c7fa71f9042a59. Affected is an unknown function of the file /assets/changeSllyabus.php. The manipulation of the argument File results in unrestricted upload. The attack may be launched remotely. The exploit is now public and may be used. This product operates on a rolling release basis, ensuring continuous delivery. Consequently, there are no version details for either affected or updated releases.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 10.9%

CVSS Severity

CVSS v3 Score 7.3

CVSS v2 Score 7.5

References

https://github.com/qqy-123/cve/issues/3
https://vuldb.com/?ctiid.328075
https://vuldb.com/?id.328075
https://vuldb.com/?submit.665605
https://github.com/qqy-123/cve/issues/3

Products affected by CVE-2025-11658

Oranbyte » School Management System » Version: 1.0

cpe:2.3:a:oranbyte:school_management_system:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-11658

Products

Pricing

Contact Us