Unrated severityNVD Advisory· Published Apr 20, 2025· Updated Apr 21, 2025
SourceCodester Web-based Pharmacy Product Management System changepassword.php cross site scripting
CVE-2025-3822
Description
A vulnerability was found in SourceCodester Web-based Pharmacy Product Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file changepassword.php. The manipulation of the argument txtconfirm_password/txtnew_password/txtold_password leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: = 1.0
- SourceCodester/Web-based Pharmacy Product Management Systemv5Range: 1.0
Patches
Vulnerability mechanics
References
4- github.com/yaklang/IRifyScanResult/blob/main/Web-based%20Pharmacy%20Product%20Management%20System/xss_from_input_with_post.mdmitreexploit
- vuldb.commitresignaturepermissions-required
- vuldb.commitrevdb-entrytechnical-description
- www.sourcecodester.commitreproduct
News mentions
0No linked articles in our index yet.