Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

65 matches found

CVE
CVEadded 2025/04/14 8:0 p.m.75 views

CVE-2025-3587

CVE-2025-3587 affects ZeroWdd/code-projects studentmanager version 1.0. The vulnerability involves improper authorization in the /getTeacherList file, allowing a remote attacker to exploit it. Public disclosures imply exploitable conditions. CVSS base impact ratings from sources include High conf...

8.8CVSS7.4AI score0.00403EPSS
Exploits1References4Affected Software1
NVD
NVDadded 2025/04/14 12:15 p.m.12 views

CVE-2025-3564

A vulnerability classified as problematic has been found in huanfenz/code-projects StudentManager up to 1.0. This affects an unknown part of the component Teacher String Handler. The manipulation leads to improper authorization. It is possible to initiate the attack remotely. The exploit has been...

6.5CVSS0.00386EPSS
Exploits1References4
OSV
OSVadded 2025/04/14 12:15 p.m.1 views

CVE-2025-3565

A vulnerability classified as critical was found in huanfenz/code-projects StudentManager 1.0. This vulnerability affects unknown code of the file /upload/uploadArticle.do of the component Announcement Management Section. The manipulation of the argument File leads to unrestricted upload. The...

7.2CVSS5.4AI score0.00464EPSS
Exploits1References4
NVD
NVDadded 2025/04/14 12:15 p.m.19 views

CVE-2025-3565

A vulnerability classified as critical was found in huanfenz/code-projects StudentManager 1.0. This vulnerability affects unknown code of the file /upload/uploadArticle.do of the component Announcement Management Section. The manipulation of the argument File leads to unrestricted upload. The...

7.2CVSS0.00464EPSS
Exploits1References4
CVE
CVEadded 2025/04/14 12:0 p.m.69 views

CVE-2025-3565

CVE-2025-3565 affects huanfenz/code-projects StudentManager 1.0, specifically the /upload/uploadArticle.do path in the Announcement Management Section. The root cause is manipulation of the File parameter, enabling unrestricted file upload and remote exploitation. Public exploit information exist...

7.2CVSS5AI score0.00464EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2025/04/14 11:31 a.m.30 views

CVE-2025-3564 huanfenz/code-projects StudentManager Teacher String improper authorization

A vulnerability classified as problematic has been found in huanfenz/code-projects StudentManager up to 1.0. This affects an unknown part of the component Teacher String Handler. The manipulation leads to improper authorization. It is possible to initiate the attack remotely. The exploit has been...

5.3CVSS0.00386EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2025/04/14 11:31 a.m.5 views

CVE-2025-3564 huanfenz/code-projects StudentManager Teacher String improper authorization

A vulnerability classified as problematic has been found in huanfenz/code-projects StudentManager up to 1.0. This affects an unknown part of the component Teacher String Handler. The manipulation leads to improper authorization. It is possible to initiate the attack remotely. The exploit has been...

5.3CVSS6.7AI score0.00386EPSS
Exploits1References4
CVE
CVEadded 2025/04/14 11:31 a.m.72 views

CVE-2025-3564

CVE-2025-3564 concerns huanfenz/code-projects StudentManager (up to 1.0), specifically the Teacher String Handler component. The issue is described as a vulnerability leading to improper authorization . The attack could be initiated remotely, and the exploit has been disclosed publicly. Multiple ...

6.5CVSS4.7AI score0.00386EPSS
Exploits1References4Affected Software1
CNNVD
CNNVDadded 2025/04/14 12:0 a.m.2 views

studentmanager 安全漏洞

studentmanager is a student management system by the individual developers of ZeroWdd. A security vulnerability exists in studentmanager version 1.0, which stems from improper authorization in the file /getTeacherList...

8.8CVSS6.5AI score0.00403EPSS
Exploits1References5
CNNVD
CNNVDadded 2025/04/14 12:0 a.m.1 views

StudentManager 安全漏洞

StudentManager is a student management system by huanfenz individual developer. A security vulnerability exists in StudentManager 1.0 and earlier versions, which is caused by improper authorization...

6.5CVSS4.9AI score0.00386EPSS
Exploits1References5
CNNVD
CNNVDadded 2025/04/14 12:0 a.m.2 views

StudentManager 代码问题漏洞

StudentManager is a student management system developed by huanfenz. A code issue exists in StudentManager version 1.0, the vulnerability stems from improper manipulation of the parameter File in the file /upload/uploadArticle.do, which may result in arbitrary file uploads...

7.2CVSS5.2AI score0.00464EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2025/04/14 12:0 a.m.2 views

PT-2025-16215 · Huanfenz/Code Projects · Studentmanager

Name of the Vulnerable Software and Affected Versions: huanfenz/code-projects StudentManager versions up to 1.0 Description: A problematic vulnerability has been found in the Teacher String Handler component, leading to improper authorization. The manipulation can be initiated remotely. The...

5.3CVSS4.5AI score0.00386EPSS
Exploits1References9
Positive Technologies
Positive Technologiesadded 2025/04/14 12:0 a.m.3 views

PT-2025-16216 · Huanfenz/Code Projects · Studentmanager

Name of the Vulnerable Software and Affected Versions: huanfenz/code-projects StudentManager version 1.0 Description: A critical issue was found in the Announcement Management Section of the software, specifically affecting the /upload/uploadArticle.do file. The manipulation of the File argument...

7.2CVSS4.5AI score0.00464EPSS
Exploits1References9
NVD
NVDadded 2025/01/06 12:15 a.m.11 views

CVE-2024-13143

A vulnerability was found in ZeroWdd studentmanager 1.0. It has been rated as problematic. This issue affects the function submitAddPermission of the file src/main/java/com/zero/system/controller/PermissionController. java. The manipulation of the argument url leads to cross site scripting. The...

5.4CVSS0.00283EPSS
Exploits0References4
OSV
OSVadded 2025/01/06 12:15 a.m.1 views

CVE-2024-13143

A vulnerability was found in ZeroWdd studentmanager 1.0. It has been rated as problematic. This issue affects the function submitAddPermission of the file src/main/java/com/zero/system/controller/PermissionController. java. The manipulation of the argument url leads to cross site scripting. The...

5.4CVSS5.5AI score
Exploits0References4
CNNVD
CNNVDadded 2025/01/06 12:0 a.m.3 views

studentmanager 代码注入漏洞

studentmanager is a student management system by the individual developer ZeroWdd. A code injection vulnerability exists in studentmanager version 1.0, which stems from the parameter url of the file src/main/java/com/zero/system/controller/PermissionController.java that can lead to cross-site...

5.4CVSS4.2AI score0.00283EPSS
Exploits0References4
CVE
CVEadded 2025/01/05 11:31 p.m.53 views

CVE-2024-13143

CVE-2024-13143 affects ZeroWdd studentmanager 1.0. The issue is in the submitAddPermission function of PermissionController.java, where the argument url can be manipulated to trigger cross-site scripting. Attacks could be remote, and public exploits have been disclosed. Other parameters may also ...

5.4CVSS3.4AI score0.00283EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2025/01/05 11:31 p.m.18 views

CVE-2024-13143 ZeroWdd studentmanager PermissionController. java submitAddPermission cross site scripting

A vulnerability was found in ZeroWdd studentmanager 1.0. It has been rated as problematic. This issue affects the function submitAddPermission of the file src/main/java/com/zero/system/controller/PermissionController. java. The manipulation of the argument url leads to cross site scripting. The...

5.1CVSS0.00283EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2025/01/05 11:31 p.m.9 views

CVE-2024-13143 ZeroWdd studentmanager PermissionController. java submitAddPermission cross site scripting

A vulnerability was found in ZeroWdd studentmanager 1.0. It has been rated as problematic. This issue affects the function submitAddPermission of the file src/main/java/com/zero/system/controller/PermissionController. java. The manipulation of the argument url leads to cross site scripting. The...

5.1CVSS6.2AI score0.00283EPSS
Exploits0References4
NVD
NVDadded 2025/01/05 11:15 p.m.15 views

CVE-2024-13142

A vulnerability was found in ZeroWdd studentmanager 1.0. It has been declared as problematic. This vulnerability affects the function submitAddRole of the file src/main/java/com/zero/system/controller/RoleController. java. The manipulation of the argument name leads to cross site scripting. The...

5.1CVSS0.0041EPSS
Exploits1References4
Rows per page
Query Builder