CVE-2025-14962

EUVD-2025-204589
A flaw has been found in code-projects Simple Stock System 1.0. The impacted element is an unknown function of the file /market/chatuser.php. This manipulation causes cross site scripting. The attack is possible to be carried out remotely. The exploit has been published and may be used.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
VulDBCNA
4.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 10%
Affected Products (NVD)
VendorProductVersion
carmelosimple_stock_system
1.0
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
code-projectssimple_stock_system
1.0
CNA
Common Weakness Enumeration
References
https://code-projects.org/
https://github.com/wyxclcw/CVE/issues/1
https://vuldb.com/?ctiid.337598
https://vuldb.com/?id.337598
https://vuldb.com/?submit.717640
https://vuldb.com/?submit.724795