CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2024/04/10 12:0 a.m.•2 views

Student Management System 安全漏洞

Student Management System is a simple web-based student management software by the individual developer Sk. Amir Hamza of Bangladesh. A security vulnerability exists in Complete Online Student Management System version 1.0, which is caused by a cross-site scripting vulnerability in the FirstRecor...

6.1CVSS4.5AI score0.00218EPSS

CNNVD•added 2024/04/10 12:0 a.m.•2 views

Student Management System 跨站脚本漏洞

6.1CVSS4.5AI score0.00218EPSS

CNNVD•added 2024/04/10 12:0 a.m.•2 views

Student Management System 跨站脚本漏洞

6.1CVSS4.5AI score0.00184EPSS

Positive Technologies•added 2024/04/09 12:0 a.m.•3 views

PT-2024-26427 · Unknown · Campcodes Complete Online Student Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Complete Online Student Management System version 1.0 Description: A vulnerability was found in the processing of the file courses view.php, where the manipulation of the argument FirstRecord leads to cross-site scripting. The attac...

6.1CVSS6.7AI score0.00218EPSS

Exploits1References8

Positive Technologies•added 2024/04/09 12:0 a.m.•3 views

PT-2024-26423 · Unknown · Campcodes Complete Online Student Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Complete Online Student Management System version 1.0 Description: A vulnerability was found in the system, affecting unknown code of the file Marks view.php. The manipulation of the FirstRecord argument leads to cross-site scriptin...

6.1CVSS7.1AI score0.00148EPSS

Exploits1References8

NVD•added 2023/11/30 2:15 p.m.•8 views

CVE-2023-6435

A vulnerability has been discovered in BigProf Online Invoicing System 2.6, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /inventory/batchesview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user to...

6.3CVSS0.00191EPSS

NVD•added 2023/11/30 2:15 p.m.•6 views

CVE-2023-6430

A vulnerability has been discovered in BigProf Online Invoicing System 2.6, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /inventory/transactionsview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user...

6.3CVSS0.00286EPSS

NVD•added 2023/11/30 2:15 p.m.•13 views

CVE-2023-6426

A vulnerability has been discovered in BigProf Online Invoicing System 2.6, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /invoicing/app/invoicesview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user...

6.3CVSS0.00139EPSS

OSV•added 2023/11/30 2:15 p.m.•1 views

CVE-2023-6424

A vulnerability has been discovered in BigProf Online Clinic Management System 2.2, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /clinic/diseasesymptomsview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an...

OSV•added 2023/11/30 2:15 p.m.•0 views

CVE-2023-6425

A vulnerability has been discovered in BigProf Online Clinic Management System 2.2, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /clinic/medicalrecordsview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacki...

ATTACKERKB•added 2023/11/30 2:15 p.m.•1 views

Exploits0References2

CVE-2023-6425

A vulnerability has been discovered in BigProf Online Clinic Management System 2.2, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /clinic/medicalrecordsview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacki...

6.3CVSS5.3AI score0.00171EPSS

Exploits0References2Affected Software1

OSV•added 2023/11/30 2:15 p.m.•0 views

CVE-2023-6422

A vulnerability has been discovered in BigProf Online Clinic Management System 2.2, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /clinic/patientsview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking use...

OSV•added 2023/11/30 2:15 p.m.•1 views

CVE-2023-6423

A vulnerability has been discovered in BigProf Online Clinic Management System 2.2, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /clinic/eventsview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user ...

Vulnrichment•added 2023/11/30 1:54 p.m.•12 views

CVE-2023-6431 Cross-site Scripting vulnerability in BigProf products

A vulnerability has been discovered in BigProf Online Invoicing System 2.6, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /inventory/categoriesview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user t...

6.3CVSS6AI score0.00286EPSS

Cvelist•added 2023/11/30 1:52 p.m.•13 views

CVE-2023-6427 Cross-site Scripting vulnerability in BigProf products

A vulnerability has been discovered in BigProf Online Invoicing System 2.6, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /invoicing/app/invoicesview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user...

6.3CVSS6.1AI score0.00191EPSS

CNNVD•added 2023/11/30 12:0 a.m.•1 views

BigProf Online Clinic Management System Cross-Site Scripting Vulnerability

BigProf Online Clinic Management System is an online clinic management system from BigProf, Inc. A cross-site scripting vulnerability exists in BigProf Online Clinic Management System version 2.2, which stems from a cross-site scripting vulnerability in the FirstRecord parameter of...

6.3CVSS6.2AI score0.00142EPSS

CNNVD•added 2023/11/30 12:0 a.m.•1 views

BigProf Online Invoicing System Cross-Site Scripting Vulnerability

BigProf Online Invoicing System OIS is an online invoicing system. A cross-site scripting vulnerability exists in BigProf Online Invoicing System version 3.2, which stems from a cross-site scripting vulnerability in the FirstRecord parameter of /inventory/categoriesview.php...

6.3CVSS6.2AI score0.00286EPSS