Lucene search
K

611 matches found

Positive Technologies
Positive Technologies
added 2024/04/09 12:0 a.m.4 views

PT-2024-26414 · Unknown · Campcodes Complete Online Student Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Complete Online Student Management System version 1.0 Description: A vulnerability was found in the system, classified as problematic, affecting some unknown functionality of the file units view.php. The manipulation of the...

6.1CVSS6.7AI score0.00667EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2024/04/09 12:0 a.m.6 views

PT-2024-26418 · Unknown · Campcodes Complete Online Student Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Complete Online Student Management System version 1.0 Description: A problematic issue has been found in the system, affecting an unknown part of the file students view.php. The manipulation of the FirstRecord argument leads to...

6.1CVSS6.7AI score0.00641EPSS
Exploits1References8
NVD
NVD
added 2023/12/19 11:15 a.m.21 views

CVE-2023-6945

A vulnerability has been found in SourceCodester Online Student Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file edit-student-detail.php. The manipulation of the argument notmsg leads to cross site scripting. The attack ca...

4.8CVSS0.00637EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/12/19 10:57 a.m.29 views

CVE-2023-6945 SourceCodester Online Student Management System edit-student-detail.php cross site scripting

A vulnerability has been found in SourceCodester Online Student Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file edit-student-detail.php. The manipulation of the argument notmsg leads to cross site scripting. The attack ca...

3.3CVSS5.2AI score0.00637EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/12/19 10:57 a.m.8 views

CVE-2023-6945 SourceCodester Online Student Management System edit-student-detail.php cross site scripting

A vulnerability has been found in SourceCodester Online Student Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file edit-student-detail.php. The manipulation of the argument notmsg leads to cross site scripting. The attack ca...

3.3CVSS6.2AI score0.00637EPSS
Exploits1References3
CVE
CVE
added 2023/12/19 10:57 a.m.50 views

CVE-2023-6945

CVE-2023-6945 affects SourceCodester Online Student Management System 1.0, specifically the edit-student-detail.php file. The vulnerability arises from manipulation of the notmsg parameter, enabling cross-site scripting. Exploitation can be remote and public disclosure exists. Connected sources i...

4.8CVSS3.9AI score0.00637EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2023/12/19 12:0 a.m.4 views

SourceCodester Student Management System Cross-Site Scripting Vulnerability

SourceCodester Student Management System is a set of online student management system from SourceCodester, Inc. in the United States. The system provides student information management, announcement management, course management and other functions. A cross-site scripting vulnerability exists in...

4.8CVSS6.1AI score0.00637EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/09/21 11:15 p.m.5 views

CVE-2023-41616

A reflected cross-site scripting XSS vulnerability in the Search Student function of Student Management System v1.2.3 and before allows attackers to execute arbitrary Javascript in the context of a victim user's browser via a crafted payload...

4.8CVSS6AI score0.00392EPSS
Exploits0References3
OSV
OSV
added 2023/09/21 11:15 p.m.5 views

CVE-2023-41616

A reflected cross-site scripting XSS vulnerability in the Search Student function of Student Management System v1.2.3 and before allows attackers to execute arbitrary Javascript in the context of a victim user's browser via a crafted payload...

4.8CVSS5.9AI score0.00392EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/09/21 12:0 a.m.17 views

CVE-2023-41616

A reflected cross-site scripting XSS vulnerability in the Search Student function of Student Management System v1.2.3 and before allows attackers to execute arbitrary Javascript in the context of a victim user's browser via a crafted payload...

5.2AI score0.00392EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/09/21 12:0 a.m.12 views

CVE-2023-41616

A reflected cross-site scripting XSS vulnerability in the Search Student function of Student Management System v1.2.3 and before allows attackers to execute arbitrary Javascript in the context of a victim user's browser via a crafted payload...

5.9AI score0.00392EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/09/21 12:0 a.m.4 views

PT-2023-28001 · Unknown · Student Management System

Name of the Vulnerable Software and Affected Versions: Student Management System versions 1.2.3 and earlier Description: A reflected cross-site scripting XSS vulnerability in the Search Student function allows attackers to execute arbitrary Javascript in the context of a victim user's browser via...

4.8CVSS5AI score0.00392EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/09/21 12:0 a.m.4 views

Student Management System Cross-Site Scripting Vulnerability

Student Management System is a simple web-based student management software from the individual developer Sk. Amir Hamza of Bangladesh. A cross-site scripting vulnerability exists in Student Management System v1.2.3 that could allow an attacker to execute arbitrary Javascript in the victim user's...

4.8CVSS6.4AI score0.00392EPSS
Exploits0References2
CVE
CVE
added 2023/09/21 12:0 a.m.46 views

CVE-2023-41616

CVE-2023-41616 affects Student Management System (SMS) v1.2.3 and earlier, with a reflected XSS in the Search Student function that allows arbitrary Javascript execution in a victim’s browser via a crafted payload. Documents confirm the affected component and vulnerability type; PT-2023-28001 pro...

4.8CVSS5AI score0.00392EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/05/31 12:15 p.m.11 views

CVE-2023-3008

A vulnerability classified as critical has been found in ningzichun Student Management System 1.0. This affects an unknown part of the file login.php. The manipulation of the argument user/pass leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed ...

9.8CVSS8.2AI score0.00795EPSS
Exploits0References3
OSV
OSV
added 2023/05/31 12:15 p.m.3 views

CVE-2023-3008

A vulnerability classified as critical has been found in ningzichun Student Management System 1.0. This affects an unknown part of the file login.php. The manipulation of the argument user/pass leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed ...

9.8CVSS5.7AI score0.00795EPSS
Exploits0References3
NVD
NVD
added 2023/05/31 12:15 p.m.13 views

CVE-2023-3007

A vulnerability was found in ningzichun Student Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file resetPassword.php of the component Password Reset Handler. The manipulation of the argument sid leads to weak password recovery. T...

9.8CVSS7.3AI score0.01031EPSS
Exploits0References3
Prion
Prion
added 2023/05/31 12:15 p.m.14 views

Design/Logic Flaw

A vulnerability was found in ningzichun Student Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file resetPassword.php of the component Password Reset Handler. The manipulation of the argument sid leads to weak password recovery. T...

6.4CVSS9.4AI score0.01031EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2023/05/31 12:15 p.m.16 views

Sql injection

A vulnerability classified as critical has been found in ningzichun Student Management System 1.0. This affects an unknown part of the file login.php. The manipulation of the argument user/pass leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed ...

7.5CVSS9.7AI score0.00795EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/05/31 11:31 a.m.8 views

CVE-2023-3008 ningzichun Student Management System login.php sql injection

A vulnerability classified as critical has been found in ningzichun Student Management System 1.0. This affects an unknown part of the file login.php. The manipulation of the argument user/pass leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed ...

7.5CVSS7.7AI score0.00795EPSS
Exploits0References3
Rows per page
Query Builder