CVE-2024-13142

A vulnerability was found in ZeroWdd studentmanager 1.0. It has been declared as problematic. This vulnerability affects the function submitAddRole of the file src/main/java/com/zero/system/controller/RoleController. java. The manipulation of the argument name leads to cross site scripting. The...

CVE-2024-13142 ZeroWdd studentmanager RoleController. java submitAddRole cross site scripting

A vulnerability was found in ZeroWdd studentmanager 1.0. It has been declared as problematic. This vulnerability affects the function submitAddRole of the file src/main/java/com/zero/system/controller/RoleController. java. The manipulation of the argument name leads to cross site scripting. The...

CVE-2024-13142

CVE-2024-13142 affects ZeroWdd studentmanager 1.0. The vulnerability resides in the RoleController.java file (submitAddRole function) where manipulation of the argument name enables cross-site scripting. Impact is remote exploitation with potential user-initialized content execution; no exploit v...

CVE-2024-13142 ZeroWdd studentmanager RoleController. java submitAddRole cross site scripting

A vulnerability was found in ZeroWdd studentmanager 1.0. It has been declared as problematic. This vulnerability affects the function submitAddRole of the file src/main/java/com/zero/system/controller/RoleController. java. The manipulation of the argument name leads to cross site scripting. The...

CVE-2024-13134

A vulnerability, which was classified as critical, was found in ZeroWdd studentmanager 1.0. Affected is the function addTeacher/editTeacher of the file src/main/Java/com/wdd/studentmanager/controller/TeacherController. java. The manipulation of the argument file leads to unrestricted upload. It i...

CVE-2024-13134

A vulnerability, which was classified as critical, was found in ZeroWdd studentmanager 1.0. Affected is the function addTeacher/editTeacher of the file src/main/Java/com/wdd/studentmanager/controller/TeacherController. java. The manipulation of the argument file leads to unrestricted upload. It i...

CVE-2024-13134 ZeroWdd studentmanager TeacherController. java editTeacher unrestricted upload

A vulnerability, which was classified as critical, was found in ZeroWdd studentmanager 1.0. Affected is the function addTeacher/editTeacher of the file src/main/Java/com/wdd/studentmanager/controller/TeacherController. java. The manipulation of the argument file leads to unrestricted upload. It i...

CVE-2024-13134 ZeroWdd studentmanager TeacherController. java editTeacher unrestricted upload

A vulnerability, which was classified as critical, was found in ZeroWdd studentmanager 1.0. Affected is the function addTeacher/editTeacher of the file src/main/Java/com/wdd/studentmanager/controller/TeacherController. java. The manipulation of the argument file leads to unrestricted upload. It i...

CVE-2024-13133

A vulnerability, which was classified as critical, has been found in ZeroWdd studentmanager 1.0. This issue affects the function addStudent/editStudent of the file src/main/Java/com/wdd/studentmanager/controller/StudentController. java. The manipulation of the argument file leads to unrestricted...

CVE-2024-13133

A vulnerability, which was classified as critical, has been found in ZeroWdd studentmanager 1.0. This issue affects the function addStudent/editStudent of the file src/main/Java/com/wdd/studentmanager/controller/StudentController. java. The manipulation of the argument file leads to unrestricted...

CVE-2024-13133 ZeroWdd studentmanager StudentController. java editStudent unrestricted upload

A vulnerability, which was classified as critical, has been found in ZeroWdd studentmanager 1.0. This issue affects the function addStudent/editStudent of the file src/main/Java/com/wdd/studentmanager/controller/StudentController. java. The manipulation of the argument file leads to unrestricted...

CVE-2024-13133 ZeroWdd studentmanager StudentController. java editStudent unrestricted upload

A vulnerability, which was classified as critical, has been found in ZeroWdd studentmanager 1.0. This issue affects the function addStudent/editStudent of the file src/main/Java/com/wdd/studentmanager/controller/StudentController. java. The manipulation of the argument file leads to unrestricted...

CVE-2024-13133

CVE-2024-13133 affects ZeroWdd’s studentmanager 1.0, specifically the addStudent/editStudent methods in src/main/Java/com/wdd/studentmanager/controller/StudentController.java. The root cause is manipulation of the file argument, enabling unrestricted file upload. This could be exploited remotely ...

studentmanager 代码问题漏洞

studentmanager is a student management system by the individual developers of ZeroWdd. A code issue vulnerability exists in studentmanager version 1.0, which stems from the parameter file in the file src/main/Java/com/wdd/studentmanager/controller/StudentController.java that can lead to...

studentmanager 代码问题漏洞

studentmanager is a student management system by the individual developers of ZeroWdd. A code issue vulnerability exists in studentmanager version 1.0, which stems from the parameter file in the file src/main/Java/com/wdd/studentmanager/controller/TeacherController.java that can lead to...

PT-2025-2019 · Unknown · Zerowdd Studentmanager

Name of the Vulnerable Software and Affected Versions: ZeroWdd studentmanager version 1.0 Description: A critical issue has been found in the ZeroWdd studentmanager, affecting the addStudent/editStudent function of the StudentController class. The manipulation of the file argument leads to...

PT-2025-2020 · Unknown · Zerowdd Studentmanager

Name of the Vulnerable Software and Affected Versions: ZeroWdd studentmanager version 1.0 Description: A critical vulnerability was found in ZeroWdd studentmanager, affecting the addTeacher/editTeacher function of the file src/main/Java/com/wdd/studentmanager/controller/TeacherController.java. Th...

CVE-2023-39094

Cross Site Scripting vulnerability in ZeroWdd studentmanager v.1.0 allows a remote attacker to execute arbitrary code via the username parameter in the student list function...

CVE-2023-39094

Cross Site Scripting vulnerability in ZeroWdd studentmanager v.1.0 allows a remote attacker to execute arbitrary code via the username parameter in the student list function...

CVE-2023-39094

Cross Site Scripting vulnerability in ZeroWdd studentmanager v.1.0 allows a remote attacker to execute arbitrary code via the username parameter in the student list function...