Critical Vulnerability Information Vulnerability Type: Cross Site Scripting (XSS) CVE ID: CVE-2025-13349 (incorrect year format) Affected System: SourceCodester Student Grades Management System 1.0 Affected File: Affected Component: "Add New Grade Page" Attack Vector: Manipulating the argument leads to XSS Risk Description: - The vulnerability allows for remote execution of the attack. - Impact on system integrity is confirmed. - An exploit already exists. Additional Notes: - An exploit is publicly available and classified as proof-of-concept. - Using targeting criteria ( ) on Google Search can aid attackers in finding systems vulnerable to this specific issue. Mitigation Recommendations: - There are currently no documented countermeasures shared. - Consider replacing the affected product with a secure alternative.