611 matches found
PT-2024-26414 · Unknown · Campcodes Complete Online Student Management System
Name of the Vulnerable Software and Affected Versions: Campcodes Complete Online Student Management System version 1.0 Description: A vulnerability was found in the system, classified as problematic, affecting some unknown functionality of the file units view.php. The manipulation of the...
PT-2024-26418 · Unknown · Campcodes Complete Online Student Management System
Name of the Vulnerable Software and Affected Versions: Campcodes Complete Online Student Management System version 1.0 Description: A problematic issue has been found in the system, affecting an unknown part of the file students view.php. The manipulation of the FirstRecord argument leads to...
CVE-2023-6945
A vulnerability has been found in SourceCodester Online Student Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file edit-student-detail.php. The manipulation of the argument notmsg leads to cross site scripting. The attack ca...
CVE-2023-6945 SourceCodester Online Student Management System edit-student-detail.php cross site scripting
A vulnerability has been found in SourceCodester Online Student Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file edit-student-detail.php. The manipulation of the argument notmsg leads to cross site scripting. The attack ca...
CVE-2023-6945 SourceCodester Online Student Management System edit-student-detail.php cross site scripting
A vulnerability has been found in SourceCodester Online Student Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file edit-student-detail.php. The manipulation of the argument notmsg leads to cross site scripting. The attack ca...
CVE-2023-6945
CVE-2023-6945 affects SourceCodester Online Student Management System 1.0, specifically the edit-student-detail.php file. The vulnerability arises from manipulation of the notmsg parameter, enabling cross-site scripting. Exploitation can be remote and public disclosure exists. Connected sources i...
SourceCodester Student Management System Cross-Site Scripting Vulnerability
SourceCodester Student Management System is a set of online student management system from SourceCodester, Inc. in the United States. The system provides student information management, announcement management, course management and other functions. A cross-site scripting vulnerability exists in...
CVE-2023-41616
A reflected cross-site scripting XSS vulnerability in the Search Student function of Student Management System v1.2.3 and before allows attackers to execute arbitrary Javascript in the context of a victim user's browser via a crafted payload...
CVE-2023-41616
A reflected cross-site scripting XSS vulnerability in the Search Student function of Student Management System v1.2.3 and before allows attackers to execute arbitrary Javascript in the context of a victim user's browser via a crafted payload...
CVE-2023-41616
A reflected cross-site scripting XSS vulnerability in the Search Student function of Student Management System v1.2.3 and before allows attackers to execute arbitrary Javascript in the context of a victim user's browser via a crafted payload...
CVE-2023-41616
A reflected cross-site scripting XSS vulnerability in the Search Student function of Student Management System v1.2.3 and before allows attackers to execute arbitrary Javascript in the context of a victim user's browser via a crafted payload...
PT-2023-28001 · Unknown · Student Management System
Name of the Vulnerable Software and Affected Versions: Student Management System versions 1.2.3 and earlier Description: A reflected cross-site scripting XSS vulnerability in the Search Student function allows attackers to execute arbitrary Javascript in the context of a victim user's browser via...
Student Management System Cross-Site Scripting Vulnerability
Student Management System is a simple web-based student management software from the individual developer Sk. Amir Hamza of Bangladesh. A cross-site scripting vulnerability exists in Student Management System v1.2.3 that could allow an attacker to execute arbitrary Javascript in the victim user's...
CVE-2023-41616
CVE-2023-41616 affects Student Management System (SMS) v1.2.3 and earlier, with a reflected XSS in the Search Student function that allows arbitrary Javascript execution in a victim’s browser via a crafted payload. Documents confirm the affected component and vulnerability type; PT-2023-28001 pro...
CVE-2023-3008
A vulnerability classified as critical has been found in ningzichun Student Management System 1.0. This affects an unknown part of the file login.php. The manipulation of the argument user/pass leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed ...
CVE-2023-3008
A vulnerability classified as critical has been found in ningzichun Student Management System 1.0. This affects an unknown part of the file login.php. The manipulation of the argument user/pass leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed ...
CVE-2023-3007
A vulnerability was found in ningzichun Student Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file resetPassword.php of the component Password Reset Handler. The manipulation of the argument sid leads to weak password recovery. T...
Design/Logic Flaw
A vulnerability was found in ningzichun Student Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file resetPassword.php of the component Password Reset Handler. The manipulation of the argument sid leads to weak password recovery. T...
Sql injection
A vulnerability classified as critical has been found in ningzichun Student Management System 1.0. This affects an unknown part of the file login.php. The manipulation of the argument user/pass leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed ...
CVE-2023-3008 ningzichun Student Management System login.php sql injection
A vulnerability classified as critical has been found in ningzichun Student Management System 1.0. This affects an unknown part of the file login.php. The manipulation of the argument user/pass leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed ...