Lucene search
+L

34 matches found

NVD
NVD
added 2025/01/30 2:15 a.m.25 views

CVE-2025-0849

A vulnerability classified as critical has been found in CampCodes School Management Software 1.0. Affected is an unknown function of the file /edit-staff/ of the component Staff Handler. The manipulation leads to improper authorization. It is possible to launch the attack remotely. The exploit h...

8.1CVSS0.00432EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/01/30 1:31 a.m.37 views

CVE-2025-0849 CampCodes School Management Software Staff edit-staff improper authorization

A vulnerability classified as critical has been found in CampCodes School Management Software 1.0. Affected is an unknown function of the file /edit-staff/ of the component Staff Handler. The manipulation leads to improper authorization. It is possible to launch the attack remotely. The exploit h...

6.5CVSS0.00432EPSS
Exploits1References5
NVD
NVD
added 2025/01/24 9:15 p.m.17 views

CVE-2025-0710

A vulnerability classified as problematic has been found in CampCodes School Management Software 1.0. Affected is an unknown function of the file /notice-list of the component Notice Board Page. The manipulation of the argument Notice leads to cross site scripting. It is possible to launch the...

5.4CVSS0.00364EPSS
Exploits1References5
CVE
CVE
added 2025/01/24 9:0 p.m.55 views

CVE-2025-0710

CVE-2025-0710 affects CampCodes School Management Software 1.0. The vulnerability is in the Notice Board Page, specifically the file/endpoint /notice-list where the Notice parameter can be manipulated to trigger cross-site scripting. The issue is exploitable remotely, and public disclosure of the...

5.4CVSS3.8AI score0.00364EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2025/01/22 2:15 a.m.26 views

CVE-2025-0625

A vulnerability, which was classified as problematic, was found in CampCodes School Management Software 1.0. This affects an unknown part of the component Attachment Handler. The manipulation leads to improper control of resource identifiers. It is possible to initiate the attack remotely. The...

3.1CVSS0.00472EPSS
Exploits1References5
CVE
CVE
added 2025/01/22 12:31 a.m.59 views

CVE-2025-0625

CVE-2025-0625 affects CampCodes School Management Software 1.0, specifically the Attachment Handler component. The vulnerability arises from improper control of resource identifiers, enabling an attacker to manipulate identifiers remotely. Descriptions consistently indicate remote exploitability ...

3.1CVSS4.1AI score0.00472EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/01/20 3:0 a.m.10 views

CVE-2025-0581 CampCodes School Management Software Chat History send cross site scripting

A vulnerability classified as problematic has been found in CampCodes School Management Software 1.0. This affects an unknown part of the file /chat/group/send of the component Chat History. The manipulation of the argument message leads to cross site scripting. It is possible to initiate the...

5.3CVSS6.2AI score0.00449EPSS
Exploits1References5
CVE
CVE
added 2025/01/20 3:0 a.m.51 views

CVE-2025-0581

CVE-2025-0581 affects CampCodes School Management Software v1.0, specifically the /chat/group/send endpoint in the Chat History component. The root cause is manipulation of the message parameter enabling cross-site scripting (XSS), with remote exploitation and a publicly disclosed exploit. Severa...

5.4CVSS3.7AI score0.00449EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2025/01/20 12:0 a.m.8 views

Campcodes School Management Software 代码注入漏洞

Campcodes School Management Software is a school management software from Campcodes, Inc. A code injection vulnerability exists in version 1.0 of CampCodes School Management Software, which stems from a cross-site scripting attack in the parameter message in the file /chat/group/send in the...

5.4CVSS4.9AI score0.00449EPSS
Exploits1References6
NVD
NVD
added 2025/01/18 3:15 p.m.10 views

CVE-2025-0560

A vulnerability, which was classified as problematic, was found in CampCodes School Management Software 1.0. Affected is an unknown function of the file /photo-gallery of the component Photo Gallery Page. The manipulation of the argument Description leads to cross site scripting. It is possible t...

5.1CVSS0.00345EPSS
Exploits1References5
Cvelist
Cvelist
added 2024/05/28 3:50 p.m.33 views

CVE-2024-33803

A SQL injection vulnerability in /model/getexam.php in campcodes Complete Web-Based School Management System 1.0 allows an attacker to execute arbitrary SQL commands via the id parameter...

8.2AI score0.00286EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/05/28 3:46 p.m.34 views

CVE-2024-33799

A SQL injection vulnerability in /model/getteacher.php in campcodes Complete Web-Based School Management System 1.0 allows an attacker to execute arbitrary SQL commands via the id parameter...

8.2AI score0.0051EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 1976/01/01 12:0 a.m.21 views

CVE-2024-33799

A SQL injection vulnerability in /model/getteacher.php in campcodes Complete Web-Based School Management System 1.0 allows an attacker to execute arbitrary SQL commands via the id parameter...

8.5AI score0.0051EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 1976/01/01 12:0 a.m.15 views

CVE-2024-33802

A SQL injection vulnerability in /model/getstudentsubject.php in campcodes Complete Web-Based School Management System 1.0 allows an attacker to execute arbitrary SQL commands via the index parameter...

8.8AI score0.00426EPSS
Exploits1References1
Rows per page
Query Builder