54 matches found
Alumni Management System 1.0 - SQL Injection
SourceCodester Alumni Management System 1.0 contains a sqlinjection caused by unsanitized input in admin/login.php, letting attackers bypass authentication, exploit requires injection of malicious SQL payload. id: CVE-2020-29214 info: name: Alumni Management System 1.0 - SQL Injection author:...
CVE-2025-13468
A weakness has been identified in SourceCodester Alumni Management System 1.0. This issue affects the function deleteforum/deletecareer/deletecomment/deletegallery/deleteevent of the file admin/adminclass.php of the component Delete Handler. Executing manipulation of the argument ID can lead to...
CVE-2025-13468
Summary (CVE-2025-13468): In SourceCodester Alumni Management System 1.0, the Delete Handler component (admin/admin_class.php) is affected. The vulnerability arises from manipulating the argument ID in functions delete_forum, delete_career, delete_comment, delete_gallery, and delete_event, which ...
CVE-2025-13059
A weakness has been identified in SourceCodester Alumni Management System 1.0. The impacted element is an unknown function of the file /managecareer.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been made available t...
CVE-2025-13059 SourceCodester Alumni Management System manage_career.php sql injection
A weakness has been identified in SourceCodester Alumni Management System 1.0. The impacted element is an unknown function of the file /managecareer.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been made available t...
CVE-2025-13059 SourceCodester Alumni Management System manage_career.php sql injection
A weakness has been identified in SourceCodester Alumni Management System 1.0. The impacted element is an unknown function of the file /managecareer.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been made available t...
SourceCodester Alumni Management System SQL注入漏洞
SourceCodester Alumni Management System is SourceCodester open source a Php, Mysql-based alumni management system. A SQL injection vulnerability exists in SourceCodester Alumni Management System version 1.0, which stems from incorrect manipulation of the parameter ID in the file /managecareer.php...
EUVD-2021-12121
Malware in sbrugna...
EUVD-2020-20560
Malware in sbrugna...
EUVD-2020-20558
Malware in sbrugna...
EUVD-2021-12123
Malware in sbrugna...
CVE-2021-25212
SQL injection vulnerability in SourceCodester Alumni Management System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to manageevent.php...
CVE-2021-25210
Arbitrary file upload vulnerability in SourceCodester Alumni Management System v 1.0 allows attackers to execute arbitrary code, via the file upload to manageevent.php...
CVE-2020-28071
SourceCodester Alumni Management System 1.0 is affected by cross-site Scripting XSS in /admin/gallery.php. After the admin authentication an attacker can upload an image in the gallery using a XSS payload in the description textarea called 'about' and reach a stored XSS...
CVE-2020-28070
SourceCodester Alumni Management System 1.0 is affected by SQL injection causing arbitrary remote code execution from GET input in viewevent.php via the 'id' parameter...
CVE-2020-28072
A Remote Code Execution vulnerability exists in DourceCodester Alumni Management System 1.0. An authenticated attacker can upload arbitrary file in the gallery.php page and executing it on the server reaching the RCE...
Sourcecodester Alumni Management System SQL Injection Vulnerability
Sourcecodester Alumni Management System is a Php, Mysql-based alumni management system from Sourcecodester, Inc. SourceCodester Alumni Management System version 1.0 is vulnerable to SQL injection, which allows remote attacker can exploit this vulnerability to execute arbitrary SQL statements via...
SourceCodester Alumni Management System Code Issue Vulnerability
Sourcecodester Alumni Management System is a Php, Mysql-based alumni management system from Sourcecodester, Inc. A security vulnerability exists in SourceCodester Alumni Management System version 1.0, which could be exploited by attackers to exploit the vulnerability to execute arbitrary code to...
CASAP Automated Enrollment SQL Injection Vulnerability (CNVD-2021-57785)
CASAP Automated Enrollment is an automated enrollment system for the CASAP organization. The goal of this project is to provide CASAP with an automated enrollment system to streamline the school's processes and make them more effective, efficient and easily retrievable. SourceCodester Alumni...
CVE-2021-25210
Arbitrary file upload vulnerability in SourceCodester Alumni Management System v 1.0 allows attackers to execute arbitrary code, via the file upload to manageevent.php...