28 matches found
CVE-2022-42198
In Simple Exam Reviewer Management System v1.0 the User List function suffers from insecure file upload...
CVE-2022-42200
Simple Exam Reviewer Management System v1.0 is vulnerable to Stored Cross Site Scripting XSS via the Exam List...
EUVD-2022-45275
Malicious code in bioql PyPI...
CVE-2022-42199
Simple Exam Reviewer Management System v1.0 is vulnerable to Cross Site Request Forgery CSRF via the Exam List...
CVE-2022-42201
Simple Exam Reviewer Management System v1.0 is vulnerable to Insecure file upload...
CVE-2022-40878
In Exam Reviewer Management System 1.0, an authenticated attacker can upload a web-shell php file in profile page to achieve Remote Code Execution RCE...
CVE-2022-42198
In Simple Exam Reviewer Management System v1.0 the User List function suffers from insecure file upload...
CVE-2022-42201
Simple Exam Reviewer Management System v1.0 is vulnerable to Insecure file upload...
CVE-2022-42200
CVE-2022-42200 affects the Simple Exam Reviewer Management System v1.0. The vulnerability is a Stored Cross Site Scripting (XSS) in the Exam List, allowing injected scripts to execute in other users’ browsers. Public documentation in the connected sources confirms the issue and its presence in th...
CVE-2022-42199
CVE-2022-42199 affects Simple Exam Reviewer Management System v1.0 and is a CSRF vulnerability via the Exam List. CVSS v3.1 base score 8.8 (HIGH) with network attack vector, no privileges, user interaction required. Exploitation and impact details are not deeply described in all sources, but Red ...
CVE-2022-42197
In Simple Exam Reviewer Management System v1.0 the User List function has improper access control that allows low privileged users to modify user permissions to higher privileges...
CVE-2022-42199
Simple Exam Reviewer Management System v1.0 is vulnerable to Cross Site Request Forgery CSRF via the Exam List...
CVE-2022-42200
Simple Exam Reviewer Management System v1.0 is vulnerable to Stored Cross Site Scripting XSS via the Exam List...
Simple Exam Reviewer Management System 跨站脚本漏洞
Simple Exam Reviewer Management System is a Simple Exam Reviewer Management System by Carlo Montero Personal Developer. A security vulnerability exists in Simple Exam Reviewer Management System that originates from the vulnerability to stored cross-site scripting XSS attacks via Exam List...
CVE-2022-42198
In Simple Exam Reviewer Management System v1.0 the User List function suffers from insecure file upload...
PT-2022-26306 · Unknown · Simple Exam Reviewer Management System
Name of the Vulnerable Software and Affected Versions: Simple Exam Reviewer Management System version 1.0 Description: The issue concerns an insecure file upload in the User List function. Recommendations: For Simple Exam Reviewer Management System version 1.0, consider restricting file uploads t...
PT-2022-26305 · Unknown · Simple Exam Reviewer Management System
Name of the Vulnerable Software and Affected Versions: Simple Exam Reviewer Management System version 1.0 Description: The issue concerns improper access control in the User List function, allowing low-privileged users to modify user permissions to higher privileges. Recommendations: For Simple...
PT-2022-26307 · Unknown · Simple Exam Reviewer Management System
Name of the Vulnerable Software and Affected Versions: Simple Exam Reviewer Management System version 1.0 Description: The issue concerns a Cross Site Request Forgery CSRF vulnerability via the Exam List. This means an attacker could potentially trick a user into performing unintended actions on...
PT-2022-26310 · Unknown · Simple Exam Reviewer Management System
Name of the Vulnerable Software and Affected Versions: Simple Exam Reviewer Management System version 1.0 Description: The issue concerns an insecure file upload in the Simple Exam Reviewer Management System. This allows for potential malicious file uploads, which could lead to various security...
CVE-2022-40877
Exam Reviewer Management System 1.0 is vulnerable to SQL Injection via the ‘id’ parameter...