CVE-2025-1591

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Feb 23, 2025

Updated: Feb 28, 2025

CWE ID 94

CWE ID 79

Summary

CVE-2025-1591 is a newly identified vulnerability affecting the SourceCodester Employee Management System 1.0. This issue lies within the Department Page's /department.php component and is related to an unspecified functionality. An attacker can exploit this Cross-Site Scripting (XSS) vulnerability by manipulating the Department Name argument, which allows them to inject malicious code into a victim's browser. This vulnerability can be exploited remotely, posing a significant threat to users.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/3ndwxr
https://www.cve.org/CVERecord?id=CVE-2025-1591
https://nvd.nist.gov/vuln/detail/CVE-2025-1591

Back to Vulnerability Database

CVE-2025-1591

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations