Unrated severityNVD Advisory· Published Aug 26, 2025· Updated Aug 27, 2025
CVE-2025-57425
CVE-2025-57425
Description
A Stored Cross-Site Scripting (XSS) vulnerability in SourceCodester FAQ Management System 1.0 allows an authenticated attacker to inject malicious JavaScript into the 'question' and 'answer' fields via the update-faq.php endpoint.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: 1.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.