611 matches found
Unauthorized Access Vulnerability in the Intelligent Management System for Innovative Training for Prefectural Students
Pioneer's Great Student Innovation Training Intelligent Management System is a set of management system that runs through the whole set of operation process of college students' innovation training program. An unauthorized access vulnerability exists in the system, which can be exploited by...
Information leakage vulnerability in the student work management information system of Zhengfang Software Co.(CNVD-2021-12847)
Ltd. is a software enterprise and high-tech enterprise specializing in consulting, planning, construction and service in the field of university education informatization. There is an information leakage vulnerability in the student work management information system of Zhengfang Software Co., Lt...
CVE-2020-25955
SourceCodester Student Management System Project in PHP version 1.0 is vulnerable to stored a cross-site scripting XSS via the 'add subject' tab...
CVE-2020-25955
Affected software: SourceCodester Student Management System Project in PHP version 1.0. The CVE-2020-25955 entry describes a stored XSS vulnerability exploitable through the add subject tab. Root cause: input entered via the tab is stored and subsequently reflected, enabling script execution. Imp...
Student Management System Project PHP 1.0 Cross Site Scripting
For CVE-2020-25955: Exploit Title: student management system project PHP - Stored cross-site scripting Exploit Author: Krishna Yadav Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/14443/student-management-system-project-php.html Version: 1.0 Test...
SourceCodester Student Management System Project Cross-Site Scripting Vulnerability
SourceCodester Student Management System is a set of online student management system from SourceCodester, Inc. in the United States. The system provides student information management, announcement management, course management and other functions. A cross-site scripting vulnerability exists in...
PT-2020-16256 · Sourcecodester · Sourcecodester Student Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Student Management System Project in PHP version 1.0 Description: The issue is related to a cross-site scripting XSS vulnerability. This vulnerability can be exploited via the 'add subject' tab, allowing for stored XSS attacks...
Student Management System Authentication Bypass Vulnerability
Student Management System is an online student management system that helps schools manage and track information about each student. An authentication bypass vulnerability exists in Student Management System 1.0. The vulnerability can be exploited to bypass authentication via "Username: admin' &&...
CVE-2020-23935
Kabir Alhasan Student Management System 1.0 is vulnerable to Authentication Bypass via "Username: admin' && Password: Write Something"...
CVE-2020-23935
Kabir Alhasan Student Management System 1.0 is vulnerable to Authentication Bypass via "Username: admin' && Password: Write Something"...
Authentication flaw
Kabir Alhasan Student Management System 1.0 is vulnerable to Authentication Bypass via "Username: admin' && Password: Write Something"...
CVE-2020-23935
CVE-2020-23935 affects Kabir Alhasan Student Management System 1.0. An authentication bypass is possible via a crafted login payload, e.g., Username: admin'# and any Password, allowing bypass of the login check through the admin path (process.php). Multiple sources corroborate an SQLi- or bypass-...
CVE-2020-23935
Kabir Alhasan Student Management System 1.0 is vulnerable to Authentication Bypass via "Username: admin' && Password: Write Something"...
PT-2020-15601 · Kabir Alhasan · Kabir Alhasan Student Management System
Name of the Vulnerable Software and Affected Versions: Kabir Alhasan Student Management System version 1.0 Description: The issue allows for Authentication Bypass. An attacker can exploit this by using a specific combination of username and password, such as 'admin', to bypass authentication...
SQL Injection Vulnerability in the Student Management System wjgl_xx.asp Page of Shanxi Huaxing TechSoft Co.
Student Management System is a software application for the daily management of various student information. A SQL injection vulnerability exists in the Student Management System developed by Shanxi Huaxing TechSoft Co. Ltd, which can be exploited by attackers to obtain sensitive information from...
某用户量较大的综合管理系统mssql注射漏洞
简要描述: 大量学生综合系统使用安脉的。 详细说明: 厂商: 上海安脉计算机科技有限公司 http://www.anmai.net/ SQL注射点: /oa/news/updateAffiche.aspx?id=1 其中id参数存在sql注射 互联网自动采集案例5枚: http://zhgl.w25z.cn/ANMAI/oa/news/updateAffiche.aspx?id=1 http://www.jukui.com/ANMAI/oa/news/updateAffiche.aspx?id=1...
CVE-2014-1914
Multiple cross-site scripting XSS vulnerabilities in Command School Student Management System 1.06.01 allow remote attackers to inject arbitrary web script or HTML via the 1 topic parameter to sw/addtopic.php or 2 nick parameter to sw/chat/message.php...
CVE-2014-1915
Multiple cross-site request forgery CSRF vulnerabilities in Command School Student Management System 1.06.01 allow remote attackers to hijack the authentication of 1 administrators for requests that change the administrator password via an update action to sw/adminchangepassword.php or 2...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in Command School Student Management System 1.06.01 allow remote attackers to hijack the authentication of 1 administrators for requests that change the administrator password via an update action to sw/adminchangepassword.php or 2...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Command School Student Management System 1.06.01 allow remote attackers to inject arbitrary web script or HTML via the 1 topic parameter to sw/addtopic.php or 2 nick parameter to sw/chat/message.php...