CVE-2025-4887: SourceCodester Online Student Clearance System cross-site request forgery
Description
A vulnerability, which was classified as problematic, has been found in SourceCodester Online Student Clearance System 1.0. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Eine problematische Schwachstelle wurde in SourceCodester Online Student Clearance System 1.0 entdeckt. Davon betroffen ist unbekannter Code. Durch Beeinflussen mit unbekannten Daten kann eine cross-site request forgery-Schwachstelle ausgenutzt werden. Der Angriff kann über das Netzwerk erfolgen. Der Exploit steht zur öffentlichen Verfügung.
Classification
CVE ID: CVE-2025-4887
CVSS Base Severity: MEDIUM
CVSS Base Score: 4.3
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Affected Products
Vendor: SourceCodester
Product: Online Student Clearance System
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.03% (probability of being exploited)
EPSS Percentile: 5.92% (scored less or equal to compared to others)
EPSS Date: 2025-06-16 (when was this score calculated)
References
https://nvd.nist.gov/vuln/detail/CVE-2025-4887https://vuldb.com/?id.309440
https://vuldb.com/?ctiid.309440
https://vuldb.com/?submit.577487
https://github.com/ClausiusFan/CVE/blob/main/CVE_2.md
https://www.sourcecodester.com/