Lucene search
+L

11 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:29 a.m.5 views

CVE-2021-27332

Cross-site scripting XSS vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to inject arbitrary web script or HTML via the classname parameter to updateclass.php...

6.1CVSS5.9AI score0.00838EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-13043

Malware in sbrugna...

9.8CVSS9.4AI score0.01476EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 8:39 p.m.11 views

CVE-2021-26201

The Login Panel of CASAP Automated Enrollment System 1.0 is vulnerable to SQL injection authentication bypass. An attacker can obtain access to the admin panel by injecting a SQL query in the username field of the login page...

9.8CVSS7.3AI score0.02179EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:26 p.m.11 views

CVE-2021-26229

SQL injection vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to editstud.php...

9.8CVSS8.6AI score0.01536EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/05/14 5:59 p.m.17 views

CVE-2024-33485

SQL Injection vulnerability in CASAP Automated Enrollment System using PHP/MySQLi with Source Code V1.0 allows a remote attacker to obtain sensitive information via a crafted payload to the login.php component...

7.6AI score0.0071EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/14 5:59 p.m.32 views

CVE-2024-33485

SQL Injection vulnerability in CASAP Automated Enrollment System using PHP/MySQLi with Source Code V1.0 allows a remote attacker to obtain sensitive information via a crafted payload to the login.php component...

7.5AI score0.0071EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/05/14 12:0 a.m.5 views

PT-2024-25278

Name of the Vulnerable Software and Affected Versions CASAP Automated Enrollment System version V1.0 Description The issue allows a remote attacker to obtain sensitive information via a crafted payload to the "login.php" component. This is due to a SQL Injection vulnerability in the CASAP Automat...

9.8CVSS7.6AI score0.0071EPSS
Exploits0References5
OSV
OSV
added 2021/11/08 9:15 p.m.6 views

CVE-2021-40261

Multiple Cross Site Scripting XSS vulnerabilities exist in SourceCodester CASAP Automated Enrollment System 1.0 via the 1 userusername and 2 category parameters in saveclass.php, the 3 firstname, 4 class, and 5 status parameters in studenttable.php, the 6 category and 7 classname parameters in...

6.1CVSS6.4AI score0.00641EPSS
Exploits1References1
Cvelist
Cvelist
added 2021/07/22 6:34 p.m.28 views

CVE-2021-26223

SQL injection vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to viewpay.php...

10AI score0.01517EPSS
Exploits1References1
OSV
OSV
added 2021/07/22 6:15 p.m.5 views

CVE-2021-26226

SQL injection vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to edituser.php...

9.8CVSS6.1AI score0.01476EPSS
Exploits1References1
OSV
OSV
added 2021/04/15 12:15 p.m.8 views

CVE-2021-27129

CASAP Automated Enrollment System version 1.0 contains a cross-site scripting XSS vulnerability through the Students Edit ROUTE parameter...

5.4CVSS6AI score0.00614EPSS
Exploits1References2
Rows per page
Query Builder