CVE-2025-3150
MEDIUMitning Student Homework Management System < 1.2.7 - Cross-Site Request Forgery
Title source: llmDescription
A vulnerability was found in itning Student Homework Management System up to 1.2.7. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross-site request forgery. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. Multiple endpoints might be affected.
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
https://vuldb.com/?id.303055
Permissions Required, VDB Entry signature
permissions-required
https://vuldb.com/?ctiid.303055
Third Party Advisory, VDB Entry third-party-advisory
https://vuldb.com/?submit.525408
Exploit, Issue Tracking exploit
issue-tracking
https://gitee.com/nwtmd5/cve/issues/IBVLYH
Scores
CVSS v3
4.3
EPSS
0.0019
EPSS Percentile
40.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-862
CWE-352
Status
published
Products (1)
itning/student-homework-management-system
< 1.2.7
Published
Apr 03, 2025
Tracked Since
Feb 18, 2026