Lucene search
K

4496 matches found

Vulnrichment
Vulnrichment
added 2026/06/03 1:28 p.m.9 views

CVE-2026-47324 Stored XSS in Multiple Points in ProjectsAndPrograms school-management-system

ProjectsAndPrograms school-management-system is vulnerable to Stored Cross‑Site Scripting XSS in multiple attributes of students and teachers objects. An authorized attacker e.g., a teacher or administrator can inject malicious JavaScript that is subsequently executed in other users’ browsers...

5.1CVSS6.1AI score0.00291EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/03 1:28 p.m.13 views

EUVD-2026-34093

ProjectsAndPrograms school-management-system is vulnerable to Stored Cross‑Site Scripting XSS in multiple attributes of students and teachers objects. An authorized attacker e.g., a teacher or administrator can inject malicious JavaScript that is subsequently executed in other users’ browsers...

5.1CVSS6.1AI score0.00291EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/03 1:28 p.m.6 views

CVE-2026-47324

ProjectsAndPrograms school-management-system is vulnerable to Stored Cross‑Site Scripting XSS in multiple attributes of students and teachers objects. An authorized attacker e.g., a teacher or administrator can inject malicious JavaScript that is subsequently executed in other users’ browsers...

5.1CVSS6.1AI score0.00291EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/06/03 1:28 p.m.36 views

CVE-2026-47324 Stored XSS in Multiple Points in ProjectsAndPrograms school-management-system

ProjectsAndPrograms school-management-system is vulnerable to Stored Cross‑Site Scripting XSS in multiple attributes of students and teachers objects. An authorized attacker e.g., a teacher or administrator can inject malicious JavaScript that is subsequently executed in other users’ browsers...

5.1CVSS0.00291EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/03 12:0 a.m.20 views

PT-2026-45942

ProjectsAndPrograms school-management-system is vulnerable to Stored Cross‑Site Scripting XSS in multiple attributes of students and teachers objects. An authorized attacker e.g., a teacher or administrator can inject malicious JavaScript that is subsequently executed in other users’ browsers...

5.1CVSS6.1AI score0.00291EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/03 12:0 a.m.7 views

school-management-system 跨站脚本漏洞

School-Management-System is a PHP-based school management system developed by Shubham Kumar, an individual developer. The school-management-system has a cross-site scripting vulnerability. This vulnerability stems from multiple attributes of student and teacher objects that contain stored...

5.1CVSS5.2AI score0.00291EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/03 12:0 a.m.8 views

Student-Management-System 授权问题漏洞

Student-Management-System is an open-source student information management system developed by Cyber-III. There is a vulnerability related to authorization in Student-Management-System, which stems from unknown functions of the Administrative Backend component in the admin/config.php file. This...

7.5CVSS7.3AI score0.00405EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/03 12:0 a.m.16 views

PT-2026-46071

Name of the Vulnerable Software and Affected Versions ealpha072 Student-Management-System versions prior to 01451bd7a2f58cdda07bd0b86e3967582e3ecd08 Description An issue in the Administrative Backend component, specifically within the 'admin/config.php' file, allows for improper authentication...

7.5CVSS7.1AI score0.00405EPSS
Exploits0References8
NVD
NVD
added 2026/06/02 9:16 p.m.11 views

CVE-2026-10620

A flaw has been found in code-projects Student Admission System 1.0. Affected is an unknown function of the file /index.php. This manipulation of the argument eid/did causes sql injection. The attack is possible to be carried out remotely. The exploit has been published and may be used...

7.5CVSS0.00272EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/06/02 8:15 p.m.29 views

CVE-2026-10620 code-projects Student Admission System index.php sql injection

A flaw has been found in code-projects Student Admission System 1.0. Affected is an unknown function of the file /index.php. This manipulation of the argument eid/did causes sql injection. The attack is possible to be carried out remotely. The exploit has been published and may be used...

7.5CVSS0.00272EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/06/02 8:15 p.m.7 views

CVE-2026-10620

A flaw has been found in code-projects Student Admission System 1.0. Affected is an unknown function of the file /index.php. This manipulation of the argument eid/did causes sql injection. The attack is possible to be carried out remotely. The exploit has been published and may be used...

7.5CVSS6.9AI score0.00272EPSS
Exploits0References8Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/02 8:15 p.m.8 views

CVE-2026-10620 code-projects Student Admission System index.php sql injection

A flaw has been found in code-projects Student Admission System 1.0. Affected is an unknown function of the file /index.php. This manipulation of the argument eid/did causes sql injection. The attack is possible to be carried out remotely. The exploit has been published and may be used...

7.5CVSS6.9AI score0.00272EPSS
Exploits0References8
EUVD
EUVD
added 2026/06/02 8:15 p.m.13 views

EUVD-2026-34023

A flaw has been found in code-projects Student Admission System 1.0. Affected is an unknown function of the file /index.php. This manipulation of the argument eid/did causes sql injection. The attack is possible to be carried out remotely. The exploit has been published and may be used...

7.5CVSS5.7AI score0.00272EPSS
Exploits0References8
CVE
CVE
added 2026/06/02 8:15 p.m.19 views

CVE-2026-10620

The CVE-2026-10620 entry applies to code-projects Student Admission System 1.0, with a SQL injection flaw in /index.php triggered by tampering with eid/did arguments. The underlying issue is an input handling fault that enables remote SQL injection (attack vector: NETWORK; complexity: LOW). The e...

7.5CVSS6.9AI score0.00272EPSS
Exploits0References8
EUVD
EUVD
added 2026/06/02 8:0 p.m.12 views

EUVD-2026-34022

A vulnerability was detected in sayan365 student-management-system up to 7f3c9ce7d410332335c2affac93a385485051800. This impacts an unknown function. The manipulation results in improper authentication. The attack can be executed remotely. The exploit is now public and may be used. This product...

7.5CVSS5.5AI score0.00498EPSS
Exploits0References12
Vulnrichment
Vulnrichment
added 2026/06/02 8:0 p.m.11 views

CVE-2026-10619 sayan365 student-management-system improper authentication

A vulnerability was detected in sayan365 student-management-system up to 7f3c9ce7d410332335c2affac93a385485051800. This impacts an unknown function. The manipulation results in improper authentication. The attack can be executed remotely. The exploit is now public and may be used. This product...

7.5CVSS6.8AI score0.00498EPSS
Exploits0References12
RedhatCVE
RedhatCVE
added 2026/06/02 4:3 a.m.15 views

CVE-2026-10169

A vulnerability was detected in OUSL-GROUP-BrinaryBrains School Student Management System up to 1e70e5ad1125b86dca4ee086eb6bb121f17708b6. Affected by this vulnerability is the function ajaxforgotpassword of the file application/controllers/Login.php of the component Forgot Password Endpoint. The...

6.3CVSS5.1AI score0.00286EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.12 views

PT-2026-45852

Name of the Vulnerable Software and Affected Versions code-projects Student Admission System version 1.0 Description A SQL injection flaw exists in the /index.php file. This issue allows a remote attacker to manipulate the eid and did arguments to execute unauthorized database queries...

7.5CVSS7.3AI score0.00272EPSS
Exploits0References12
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.5 views

Code-Projects Student Admission System SQL注入漏洞

Code-Projects Student Admission System is an open-source student admission system developed by Code-Projects. Version 1.0 of the Code-Projects Student Admission System has a SQL injection vulnerability. This vulnerability stems from the operation of parameters eid/did in the file/index.php, which...

7.5CVSS5.7AI score0.00272EPSS
Exploits0References8
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.8 views

Student-Management-System 授权问题漏洞

Student-Management-System is an open-source student information management system developed by Cyber-III. There is a vulnerability in the student-management-system’s authorization mechanism; this vulnerability stems from improper authentication of unknown functions, which may lead to remote attac...

7.5CVSS5.4AI score0.00498EPSS
Exploits0References12
Rows per page
Query Builder