Lucene search
K

313 matches found

Positive Technologies
Positive Technologies
added 2025/09/28 12:0 a.m.10 views

PT-2025-39773

Name of the Vulnerable Software and Affected Versions code-projects Simple Scheduling System version 1.0 Description A flaw exists in code-projects Simple Scheduling System 1.0, specifically within the /schedulingsystem/addsubject.php file. Manipulation of the subcode argument can lead to SQL...

9.8CVSS7.4AI score0.00384EPSS
Exploits1References10
CNNVD
CNNVD
added 2025/09/28 12:0 a.m.6 views

Code-Projects Simple Scheduling System SQL注入漏洞

Simple Scheduling System is a simple scheduling system. Simple Scheduling System suffers from a SQL injection vulnerability that stems from the /schedulingsystem/addsubject.php file not securely filtering the subcode parameter. No details of the vulnerability are available at this time...

9.8CVSS8AI score0.00384EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/05/23 11:57 a.m.7 views

CVE-2025-0211

A vulnerability was found in Campcodes School Faculty Scheduling System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/index.php. The manipulation of the argument page leads to file inclusion. The attack may be launched remotely. The exploi...

9.8CVSS6.9AI score0.00663EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:26 a.m.10 views

CVE-2024-12360

A vulnerability was found in code-projects Online Class and Exam Scheduling System 1.0. It has been rated as critical. This issue affects some unknown processing of the file classupdate.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The...

8.8CVSS7.4AI score0.00517EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:2 a.m.9 views

CVE-2024-12486

A vulnerability, which was classified as critical, was found in code-projects Online Class and Exam Scheduling System 1.0. Affected is an unknown function of the file /pages/rankupdate.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. T...

8.8CVSS9AI score0.00545EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:53 a.m.10 views

CVE-2024-12489

A vulnerability was found in code-projects Online Class and Exam Scheduling System 1.0. It has been classified as critical. This affects an unknown part of the file /pages/term.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...

8.8CVSS8.9AI score0.00545EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:0 a.m.20 views

CVE-2023-36137

There is a Cross Site Scripting XSS vulnerability in the "theme" parameter of preview.php in PHPJabbers Class Scheduling System 1.0...

6.1CVSS5.9AI score0.00312EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:35 a.m.6 views

CVE-2023-2826

A vulnerability has been found in SourceCodester Class Scheduling System 1.0 and classified as problematic. This vulnerability affects unknown code of the file searchteacherresult.php of the component POST Parameter Handler. The manipulation of the argument teacher leads to cross site scripting...

5.4CVSS6.4AI score0.0065EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:35 a.m.9 views

CVE-2023-2814

A vulnerability classified as problematic has been found in SourceCodester Class Scheduling System 1.0. Affected is an unknown function of the file /admin/saveteacher.php of the component POST Parameter Handler. The manipulation of the argument AcademicRank leads to cross site scripting. It is...

6.1CVSS6.2AI score0.0059EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:50 a.m.6 views

CVE-2023-2823

A vulnerability was found in SourceCodester Class Scheduling System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/editsubject.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql...

9.8CVSS7.4AI score0.00754EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:12 p.m.7 views

CVE-2022-36676

Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /categories/viewcategory.php...

7.2CVSS8.3AI score0.00843EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:12 p.m.10 views

CVE-2022-36678

Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deletecategory...

9.8CVSS8.3AI score0.00891EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:12 p.m.7 views

CVE-2022-36675

Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /schedules/manageschedule.php...

7.2CVSS8.3AI score0.00861EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:12 p.m.7 views

CVE-2022-36674

Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /schedules/viewschedule.php...

7.2CVSS8.3AI score0.00861EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:10 p.m.9 views

CVE-2022-36681

Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deleteaccount...

9.8CVSS8.3AI score0.00891EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:9 p.m.10 views

CVE-2022-36682

Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deletestudent...

9.8CVSS8.3AI score0.00891EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:8 p.m.7 views

CVE-2022-36683

Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deletepayment...

9.8CVSS8.3AI score0.00891EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:14 p.m.10 views

CVE-2022-36680

Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deleteschedule...

9.8CVSS8.3AI score0.00891EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:14 p.m.10 views

CVE-2022-36679

Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/?page=user/manageuser...

9.8CVSS8.3AI score0.00873EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:6 p.m.12 views

CVE-2022-30927

A SQL injection vulnerability exists in Simple Task Scheduling System 1.0 when MySQL is being used as the application database. An attacker can issue SQL commands to the MySQL database through the vulnerable "id" parameter...

9.8CVSS8AI score0.01383EPSS
Exploits1References1
Rows per page
Query Builder