CVE-2025-4807— SourceCodester Online Student Clearance System exposure of information through directory listing
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-4807
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SourceCodester Online Student Clearance System exposure of information through directory listing
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability, which was classified as problematic, was found in SourceCodester Online Student Clearance System 1.0. This affects an unknown part. The manipulation leads to exposure of information through directory listing. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
通过目录枚举导致的信息暴露
Source: NVD (National Vulnerability Database)
Vulnerability Title
SourceCodester Online Student Clearance System 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
SourceCodester Online Student Clearance System是SourceCodester开源的一个在线学生管理系统。 SourceCodester Online Student Clearance System 1.0版本存在安全漏洞,该漏洞源于目录列表导致信息泄露。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| SourceCodester | Online Student Clearance System | 1.0 | - |
II. Public POCs for CVE-2025-4807
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-4807
请登录查看更多情报信息。
Same Patch Batch · SourceCodester · 2025-05-16 · 5 CVEs total
| CVE-2025-4806 | 6.3 MEDIUM | SourceCodester/oretnom23 Stock Management System view_bo sql injection |
| CVE-2025-4787 | 6.3 MEDIUM | SourceCodester/oretnom23 Stock Management System view_sale sql injection |
| CVE-2025-4786 | 6.3 MEDIUM | SourceCodester/oretnom23 Stock Management System view_return sql injection |
| CVE-2025-4782 | 6.3 MEDIUM | SourceCodester/oretnom23 Stock Management System view_receiving sql injection |
IV. Related Vulnerabilities
Same product: Online Student Clearance System
- CVE-2025-14206
SourceCodester Online Student Clearance System Fee Table del - CVE-2025-13586
SourceCodester Online Student Clearance System changepasswor - CVE-2025-5984
SourceCodester Online Student Clearance System add-fee.php c - CVE-2025-4887
SourceCodester Online Student Clearance System cross-site re - CVE-2025-4470
SourceCodester Online Student Clearance System add-student.p
Same vendor: SourceCodester
- CVE-2026-8136
SourceCodester Pharmacy Sales and Inventory System index.php - CVE-2026-8131
SourceCodester SUP Online Shopping replymsg.php sql injectio - CVE-2026-8130
SourceCodester SUP Online Shopping message.php sql injection - CVE-2026-8129
SourceCodester SUP Online Shopping wishlist.php sql injectio - CVE-2026-8128
SourceCodester SUP Online Shopping viewmsg.php sql injection
Same weakness: CWE-548
- CVE-2023-38265
Improper Access Control and Exposure of Information Through - CVE-2020-36921
RED-V Super Digital Signage System 5.1.1 Log Information Dis - CVE-2022-50788
SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Information Disclosure v - CVE-2021-47718
OpenBMCS Directory Listing Information Disclosure - CVE-2024-56464
IBM QRadar SIEM is affected by an information disclosure vul
V. Comments for CVE-2025-4807
No comments yet