CVE-2025-0464: SourceCodester Task Reminder System Maintenance Section cross site scripting
First published: Tue Jan 14 2025(Updated: )
A vulnerability was found in SourceCodester Task Reminder System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Maintenance Section. The manipulation of the argument System Name leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SourceCodester Task Reminder System |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2025-0464?
CVE-2025-0464 has been declared as problematic, indicating a significant security risk.
How do I fix CVE-2025-0464?
To fix CVE-2025-0464, it is recommended to validate and sanitize user inputs in the Maintenance Section to prevent cross site scripting.
What components are affected by CVE-2025-0464?
CVE-2025-0464 affects the Maintenance Section functionality of the SourceCodester Task Reminder System.
What type of vulnerability is CVE-2025-0464?
CVE-2025-0464 is a cross site scripting (XSS) vulnerability.
What is the potential impact of CVE-2025-0464?
The potential impact of CVE-2025-0464 is that an attacker could execute arbitrary scripts in the context of the user's browser.
- agent/weakness
- agent/references
- agent/title
- agent/description
- agent/first-publish-date
- agent/type
- collector/nvd-api
- source/NVD
- agent/severity
- agent/author
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- collector/epss-latest
- source/FIRST
- agent/epss
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request