CVE-2025-57425

Publication date

2025-08-26 00:00:00

Family

mitre

State

PUBLISHED

Description

A Stored Cross-Site Scripting (XSS) vulnerability in SourceCodester FAQ Management System 1.0 allows an authenticated attacker to inject malicious JavaScript into the question and answer fields via the update-faq.php endpoint.