{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-15T13:04:37.430","vulnerabilities":[{"cve":{"id":"CVE-2025-29621","sourceIdentifier":"cve@mitre.org","published":"2025-04-22T19:15:52.300","lastModified":"2025-04-23T14:08:13.383","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Francois Jacquet RosarioSIS v12.0.0 was discovered to contain a content spoofing vulnerability in the Theme configuration under the My Preferences module. This vulnerability allows attackers to manipulate application settings."},{"lang":"es","value":"Se descubrió que Francois Jacquet RosarioSIS v12.0.0 contenía una vulnerabilidad de suplantación de contenido en la configuración del tema, dentro del módulo Mis preferencias. Esta vulnerabilidad permite a los atacantes manipular la configuración de la aplicación."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:L\/I:L\/A:L","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":3.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-290"}]}],"references":[{"url":"https:\/\/medium.com\/@rudranshsinghrajpurohit\/content-spoofing-vulnerability-in-rosariosis-student-information-system-f6101e1ff84d","source":"cve@mitre.org"},{"url":"https:\/\/www.getastra.com\/blog\/vulnerability\/content-spoofing-vulnerability-in-rosariosis-student-information-system\/","source":"cve@mitre.org"}]}}]}