21 matches found
CVE-2026-9485
A vulnerability was identified in SourceCodester Student Grades Management System 1.0. Affected by this issue is some unknown functionality of the file students.php. The manipulation of the argument Remarks leads to cross site scripting. Remote exploitation of the attack is possible. The exploit ...
CVE-2026-9486 SourceCodester Student Grades Management System cross-site request forgery
A security flaw has been discovered in SourceCodester Student Grades Management System 1.0. This affects an unknown part. The manipulation results in cross-site request forgery. The attack can be executed remotely. The exploit has been released to the public and may be used for attacks...
CVE-2026-9484
A vulnerability was determined in SourceCodester Student Grades Management System 1.0. Affected by this vulnerability is the function getClassroomStudents/removeStudentFromClassroom of the file classroom.php. Executing a manipulation of the argument classroomid can lead to improper authorization...
CVE-2026-9484 SourceCodester Student Grades Management System classroom.php removeStudentFromClassroom improper authorization
A vulnerability was determined in SourceCodester Student Grades Management System 1.0. Affected by this vulnerability is the function getClassroomStudents/removeStudentFromClassroom of the file classroom.php. Executing a manipulation of the argument classroomid can lead to improper authorization...
CVE-2026-9483
CVE-2026-9483 affects SourceCodester Student Grades Management System 1.0. The vulnerability is in an unknown function within grades.php where manipulating the argument student_id leads to improper authorization. The attack can be initiated remotely and the exploit has been made public, indicatin...
EUVD-2026-31715
A vulnerability was found in SourceCodester Student Grades Management System 1.0. Affected is an unknown function of the file grades.php. Performing a manipulation of the argument studentid results in improper authorization. The attack may be initiated remotely. The exploit has been made public a...
EUVD-2025-200277
Sourcecodester Student Grades Management System v1.0 is vulnerable to Cross Site Scripting XSS in the Add New Subject Description field...
CVE-2025-64070
Sourcecodester Student Grades Management System v1.0 is vulnerable to Cross Site Scripting XSS in the Add New Subject Description field...
CVE-2025-64070
Sourcecodester Student Grades Management System v1.0 is vulnerable to Cross Site Scripting XSS in the Add New Subject Description field...
CVE-2025-63892
A vulnerability was determined in SourceCodester Student Grades Management System 1.0. Affected is the function createclassroom of the file /classroom.php of the component My Classrooms Management Page. This manipulation of the argument name/description causes stored cross site scripting...
CVE-2025-13349 SourceCodester Student Grades Management System Add New Grade grades.php cross site scripting
A vulnerability has been found in SourceCodester Student Grades Management System 1.0. This issue affects some unknown processing of the file /grades.php of the component Add New Grade Page. The manipulation of the argument Remarks leads to cross site scripting. Remote exploitation of the attack ...
CVE-2025-13349 SourceCodester Student Grades Management System Add New Grade grades.php cross site scripting
A vulnerability has been found in SourceCodester Student Grades Management System 1.0. This issue affects some unknown processing of the file /grades.php of the component Add New Grade Page. The manipulation of the argument Remarks leads to cross site scripting. Remote exploitation of the attack ...
SourceCodester Student Grades Management System 安全漏洞
SourceCodester Student Grades Management System is a SourceCodester open source student grades management system. A security vulnerability exists in SourceCodester Student Grades System version 1.0, which originates from improper manipulation of the name/description parameter in the createclassro...
PT-2025-47319
Name of the Vulnerable Software and Affected Versions SourceCodester Student Grades Management System version 1.0 Description A flaw exists in SourceCodester Student Grades Management System 1.0 related to the processing of the /grades.php file within the Add New Grade Page component. Manipulatio...
CVE-2025-63892
CVE-2025-63892 affects SourceCodester Student Grades Management System 1.0, specifically the /classroom.php file’s create_classroom function in the My Classrooms Management Page. The vulnerability arises from manipulation of the name/description arguments, enabling stored cross-site scripting. Ex...
PT-2025-47322
Name of the Vulnerable Software and Affected Versions SourceCodester Student Grades Management System version 1.0 Description A stored cross site scripting issue exists in the Student Grades Management System. The issue is related to the manipulation of the name and description arguments within t...
SourceCodester Student Grades Management System 代码注入漏洞
SourceCodester Student Grades Management System is a SourceCodester open source student grades management system. A code injection vulnerability exists in SourceCodester Student Grades Management System version 1.0, which originates from a cross-site scripting vulnerability in the deleteuser...
CVE-2025-12332 SourceCodester Student Grades Management System admin.php delete_user cross site scripting
A flaw has been found in SourceCodester Student Grades Management System 1.0. This affects the function deleteuser of the file /admin.php. Executing manipulation can lead to cross site scripting. The attack may be performed from remote. The exploit has been published and may be used...
PT-2025-44064
Name of the Vulnerable Software and Affected Versions SourceCodester Student Grades Management System version 1.0 Description A flaw exists in the Student Grades Management System that impacts the delete user function within the /admin.php file. Manipulation of this function can lead to cross sit...
CVE-2025-11485
A vulnerability was determined in SourceCodester Student Grades Management System 1.0. Affected is the function adduser of the file /admin.php of the component Manage Users Page. This manipulation of the argument firstname/lastname causes cross site scripting. The attack can be initiated remotely...