Lucene search
K

22 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-57930

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00628EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-57929

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01681EPSS
Exploits0References1
OSV
OSV
added 2023/12/01 2:15 p.m.4 views

CVE-2023-5637

Unrestricted Upload of File with Dangerous Type vulnerability in ArslanSoft Education Portal allows Read Sensitive Strings Within an Executable.This issue affects Education Portal: before v1.1...

7.5CVSS5.8AI score0.00628EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/12/01 2:15 p.m.5 views

CVE-2023-5635

Improper Protection for Outbound Error Messages and Alert Signals vulnerability in ArslanSoft Education Portal allows Account Footprinting. This issue affects Education Portal: before v1.1...

7.5CVSS7.1AI score0.00595EPSS
Exploits0References3
OSV
OSV
added 2023/12/01 2:15 p.m.6 views

CVE-2023-5636

Unrestricted Upload of File with Dangerous Type vulnerability in ArslanSoft Education Portal allows Command Injection.This issue affects Education Portal: before v1.1...

9.8CVSS5.8AI score0.01681EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/12/01 2:15 p.m.5 views

CVE-2023-5637

Unrestricted Upload of File with Dangerous Type vulnerability in ArslanSoft Education Portal allows Read Sensitive Strings Within an Executable. This issue affects Education Portal: before v1.1...

7.5CVSS5.8AI score0.00628EPSS
Exploits0References3
OSV
OSV
added 2023/12/01 2:15 p.m.5 views

CVE-2023-5634

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in ArslanSoft Education Portal allows SQL Injection.This issue affects Education Portal: before v1.1...

9.8CVSS5.8AI score0.00788EPSS
Exploits0References1
NVD
NVD
added 2023/12/01 2:15 p.m.20 views

CVE-2023-5634

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in ArslanSoft Education Portal allows SQL Injection. This issue affects Education Portal: before v1.1...

9.8CVSS0.00788EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/12/01 2:15 p.m.5 views

CVE-2023-5634

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in ArslanSoft Education Portal allows SQL Injection. This issue affects Education Portal: before v1.1...

9.8CVSS7.4AI score0.00788EPSS
Exploits0References3
Prion
Prion
added 2023/12/01 2:15 p.m.17 views

Unrestricted file upload

Unrestricted Upload of File with Dangerous Type vulnerability in ArslanSoft Education Portal allows Read Sensitive Strings Within an Executable.This issue affects Education Portal: before v1.1...

5CVSS7.2AI score0.00628EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/12/01 2:15 p.m.15 views

Sql injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in ArslanSoft Education Portal allows SQL Injection.This issue affects Education Portal: before v1.1...

7.5CVSS8AI score0.00788EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/12/01 2:15 p.m.16 views

Input validation

Improper Protection for Outbound Error Messages and Alert Signals vulnerability in ArslanSoft Education Portal allows Account Footprinting.This issue affects Education Portal: before v1.1...

5CVSS7.2AI score0.00595EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/12/01 2:15 p.m.18 views

Design/Logic Flaw

Unrestricted Upload of File with Dangerous Type vulnerability in ArslanSoft Education Portal allows Command Injection.This issue affects Education Portal: before v1.1...

7.5CVSS7.3AI score0.01681EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/12/01 1:37 p.m.44 views

CVE-2023-5636

Affected software: ArslanSoft Education Portal (before v1.1). Vulnerability type: Unrestricted Upload of File with Dangerous Type leading to Command Injection via file upload. Root cause / impact: Unrestricted file upload allows attacker to place and execute a dangerous file, enabling command exe...

9.8CVSS7.3AI score0.01681EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/12/01 1:29 p.m.5 views

CVE-2023-5635 User Enumeration in ArslanSoft's Education Portal

Improper Protection for Outbound Error Messages and Alert Signals vulnerability in ArslanSoft Education Portal allows Account Footprinting. This issue affects Education Portal: before v1.1...

7.5CVSS7.1AI score0.00595EPSS
Exploits0References2
CVE
CVE
added 2023/12/01 1:29 p.m.43 views

CVE-2023-5635

The CVE-2023-5635 entry affects ArslanSoft Education Portal versions prior to 1.1, where improper protection of outbound error messages and alert signals enables account footprinting. This is documented across multiple sources, including NVD and related advisories, which indicate the vulnerabilit...

7.5CVSS7.1AI score0.00595EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2023/12/01 1:19 p.m.40 views

CVE-2023-5634

The CVE-2023-5634 entry applies to ArslanSoft Education Portal. Affects Education Portal components handling SQL queries prior to version 1.1. Root cause is improper neutralization of special elements in SQL commands (SQL Injection). Reported impact includes high confidentiality, integrity, and a...

9.8CVSS7.4AI score0.00788EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/12/01 12:0 a.m.5 views

ArslanSoft Education Portal Code Issue Vulnerability

ArslanSoft Education Portal is an education portal from ArslanSoft, Inc. A code issue vulnerability exists in versions prior to ArslanSoft Education Portal v1.1 that stems from the presence of a file upload vulnerability. An attacker can exploit this vulnerability to perform command injection by...

9.8CVSS7.7AI score0.01681EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/12/01 12:0 a.m.5 views

ArslanSoft Education Portal Security Breach

ArslanSoft Education Portal is an education portal from ArslanSoft, Inc. A security vulnerability exists in ArslanSoft Education Portal versions prior to v1.1 that stems from a security flaw in the Outbound Error Messages and Alert Signals features...

7.5CVSS6.7AI score0.00595EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/12/01 12:0 a.m.9 views

PT-2023-32228

Name of the Vulnerable Software and Affected Versions ArslanSoft Education Portal versions prior to 1.1 Description The issue allows for the unrestricted upload of files with dangerous types, enabling the reading of sensitive strings within an executable. Recommendations For versions prior to 1.1...

7.5CVSS7.1AI score0.00628EPSS
Exploits0References7
Rows per page
Query Builder