25 matches found
CVE-2025-15404
A security vulnerability has been detected in campcodes School File Management System 1.0. The affected element is an unknown function of the file /savefile.php. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclose...
CVE-2025-15404
A security vulnerability has been detected in campcodes School File Management System 1.0. The affected element is an unknown function of the file /savefile.php. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclose...
CVE-2025-15404
A security vulnerability has been detected in campcodes School File Management System 1.0. The affected element is an unknown function of the file /savefile.php. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclose...
CVE-2025-15404
CVE-2025-15404 affects CampCodes School File Management System 1.0. A vulnerability in an unknown function within /save_file.php allows manipulation of the File argument that leads to unrestricted upload. The issue appears to be exploitable remotely, and multiple sources indicate the exploit has ...
CVE-2025-15404 campcodes School File Management System save_file.php unrestricted upload
A security vulnerability has been detected in campcodes School File Management System 1.0. The affected element is an unknown function of the file /savefile.php. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclose...
PT-2026-1004
Name of the Vulnerable Software and Affected Versions campcodes School File Management System version 1.0 Description A security issue exists in campcodes School File Management System 1.0. The issue involves unrestricted file upload due to manipulation of the File argument within an unknown...
CVE-2025-14209
CVE-2025-14209 affects Campcodes School File Management System 1.0. A vulnerability in the file /update_query.php allows SQL injection through the parameter (stud_id/student_id depending on source). The issue enables remote exploitation and has publicly available exploits. Impact is described as ...
Campcodes School File Management System SQL注入漏洞
CampCodes School File Management System is a school file management system from CampCodes Philippines. A SQL injection vulnerability exists in Campcodes School File Management System version 1.0, which stems from the incorrect manipulation of the parameter studentid in the file /updatequery.php,...
CVE-2025-12873 Campcodes School File Management update_user.php sql injection
A security flaw has been discovered in Campcodes School File Management 1.0. This affects an unknown part of the file /admin/updateuser.php. Performing manipulation of the argument userid results in sql injection. It is possible to initiate the attack remotely. The exploit has been released to th...
EUVD-2025-38318
A security flaw has been discovered in Campcodes School File Management 1.0. This affects an unknown part of the file /admin/updateuser.php. Performing manipulation of the argument userid results in sql injection. It is possible to initiate the attack remotely. The exploit has been released to th...
EUVD-2021-15701
Malware in sbrugna...
EUVD-2021-33479
Malicious code in bioql PyPI...
CVE-2021-29055
Cross Site Scripting XSS vulnerability in sourcecodester School File Management System 1.0 via the Firtstname parameter to the Update Account form in studentprofile.php...
School File Management System Cross-Site Scripting Vulnerability (CNVD-2022-76506)
School File Management System is a school file management system that stores student files individually and retrieves them later. A cross-site scripting vulnerability exists in School File Management System version 1.0, which can be exploited to cause cross-site scripting attacks via the Lastname...
CVE-2021-29055
Cross Site Scripting XSS vulnerability in sourcecodester School File Management System 1.0 via the Firtstname parameter to the Update Account form in studentprofile.php...
CVE-2021-46824
Cross Site Scripting XSS vulnerability in sourcecodester School File Management System 1.0 via the Lastname parameter to the Update Account form in studentprofile.php...
CVE-2021-29055
Cross Site Scripting XSS vulnerability in sourcecodester School File Management System 1.0 via the Firtstname parameter to the Update Account form in studentprofile.php...
Cross site scripting
Cross Site Scripting XSS vulnerability in sourcecodester School File Management System 1.0 via the Firtstname parameter to the Update Account form in studentprofile.php...
CVE-2021-46824
Cross Site Scripting XSS vulnerability in sourcecodester School File Management System 1.0 via the Lastname parameter to the Update Account form in studentprofile.php...
CVE-2021-46824
The CVE-2021-46824 entry describes a Cross Site Scripting (XSS) vulnerability in the Sourcecodester School File Management System 1.0, exploitable via the Lastname parameter in the Update Account form (student_profile.php). Affected component: Update Account on School File Management System 1.0; ...