关键漏洞信息 漏洞类型: Cross Site Scripting (XSS) CVE 编号: CVE-2025-13349 (错误的年份格式) 受影响的系统: SourceCodester Student Grades Management System 1.0 受影响的文件: 受影响的组件: "Add New Grade Page" 攻击向量: Manipulating the argument leads to XSS 风险描述: - The vulnerability allows for remote execution of the attack. - Impact on system integrity is confirmed. - An exploit already exists. courage包括: - An exploit is publicly available and classified as proof-of-concept. - Using targeting criteria ( ) on Google Search can aid attackers in finding systems vulnerable to this specific issue. 缓解措施建议: - There are currently no documented countermeasures shared. - Consider replacing the affected product with a secure alternative.