Cross Site Scripting Vulnerability in SourceCodester Web-based Pharmacy Product Management System
CVE-2025-3825
4.8MEDIUM
What is CVE-2025-3825?
A cross site scripting vulnerability exists in the SourceCodester Web-based Pharmacy Product Management System 1.0. This flaw is found in the add-category.php file, where improper handling of the 'txtcategory_name' argument allows attackers to inject malicious scripts. The nature of this vulnerability enables remote attackers to exploit it, potentially compromising user data and the integrity of the application. Prompt remediation is essential to safeguard against potential exploitation.
Affected Version(s)
Web-based Pharmacy Product Management System 1.0