What is the CVSS score of CVE-2025-5649?

CVE-2025-5649 has a CVSS 3.1 base score of 5.3 (Medium). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N. EPSS exploitation probability: 0.1%.

Which versions of Student Result Management System are affected by CVE-2025-5649?

Organizations using A vulnerability classified as critical should be aware of moderate risk from CVE-2025-5649 rated CVSS 5.3. Exploitation could compromise the security of affected deployments.

Is there a public PoC exploit available for CVE-2025-5649?

Yes, a public proof-of-concept exploit is available for CVE-2025-5649. Prioritise patching immediately. EPSS: 0.1%.

How to fix or mitigate CVE-2025-5649?

Within 30 days: Identify affected systems and apply vendor patches as part of regular patch cycle. Monitor vendor channels for patch availability.

Student Result Management System CVE-2025-5649

EUVD-2025-16976 MEDIUM

Incorrect Privilege Assignment (CWE-266)

2025-06-05 cna@vuldb.com

Information Disclosure Student Result Management System

5.3

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

5.3 MEDIUM

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

Low

Availability

None

Lifecycle Timeline

EUVD ID Assigned

Mar 14, 2026 - 17:53 euvd

EUVD-2025-16976

Analysis Generated

Mar 14, 2026 - 17:53 vuln.today

PoC Detected

Jun 10, 2025 - 15:05 vuln.today

Public exploit code

CVE Published

Jun 05, 2025 - 09:15 nvd

MEDIUM 5.3

DescriptionCVE.org

A vulnerability classified as critical has been found in SourceCodester Student Result Management System 1.0. This affects an unknown part of the file /admin/core/new_user of the component Register Interface. The manipulation leads to improper access controls. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

AnalysisAI

A remote code execution vulnerability in A vulnerability classified as critical (CVSS 5.3). Risk factors: public PoC available.

Technical ContextAI

Vulnerability type: remote code execution. Affects A vulnerability classified as critical.

RemediationAI

Monitor vendor channels for patch availability.

CVE-2025-5649 vulnerability details – vuln.today

Back

Student Result Management System CVE-2025-5649

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code