CVE-2025-1589

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Feb 23, 2025

Updated: Feb 28, 2025

CWE ID 94

CWE ID 79

Summary

CVE-2025-1589 is a newly identified vulnerability affecting the User Registration Handler component in the SourceCodester E-Learning System version 1.0. This issue involves the processing of the /register.php file and results in a cross-site scripting (XSS) vulnerability. An attacker can exploit this weakness remotely by manipulating input data to inject malicious scripts, potentially leading to data theft or unauthorized system access. Users are advised to update their systems as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/3nQUMY
https://www.cve.org/CVERecord?id=CVE-2025-1589
https://nvd.nist.gov/vuln/detail/CVE-2025-1589

Back to Vulnerability Database

CVE-2025-1589

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations