63 matches found
CVE-2026-36232
A SQL injection vulnerability was found in the instructorClasses.php file of itsourcecode Online Student Enrollment System v1.0. The reason for this issue is that the 'classId' parameter from $GET'classId' is directly concatenated into the SQL query without any sanitization or validation...
PT-2026-31929
A SQL injection vulnerability was found in the instructorClasses.php file of itsourcecode Online Student Enrollment System v1.0. The reason for this issue is that the 'classId' parameter from $ GET'classId' is directly concatenated into the SQL query without any sanitization or validation...
EUVD-2017-7756
Malware in sbrugna...
CVE-2025-11062
A vulnerability was determined in Campcodes Online Learning Management System 1.0. This vulnerability affects unknown code of the file /admin/savestudent.php. Executing manipulation of the argument classid can lead to sql injection. The attack may be performed from remote. The exploit has been...
CVE-2025-11062
CVE-2025-11062 – Campcodes Online Learning Management System 1.0 is affected by an SQL injection in the admin/save_student.php file via manipulation of the class_id parameter. The issue is exploitable remotely; exploit publicly disclosed. Root cause: unsafe handling/validation of input in the vul...
PT-2025-39726
Name of the Vulnerable Software and Affected Versions Campcodes Online Learning Management System version 1.0 Description A SQL injection issue exists in Campcodes Online Learning Management System version 1.0. The issue is located in the file /admin/save student.php. Manipulation of the class id...
CampCodes Online Learning Management System SQL注入漏洞
CampCodes Online Learning Management System is an online learning management system from CampCodes Philippines, Inc. A SQL injection vulnerability exists in CampCodes Online Learning Management System version 1.0, which stems from an incorrect manipulation of the classid parameter in the file...
CVE-2025-10673 itsourcecode Student Information Management System index.php sql injection
A vulnerability was determined in itsourcecode Student Information Management System 1.0. The impacted element is an unknown function of the file /admin/modules/class/index.php. This manipulation of the argument classId causes sql injection. The attack may be initiated remotely. The exploit has...
CVE-2025-10673 itsourcecode Student Information Management System index.php sql injection
A vulnerability was determined in itsourcecode Student Information Management System 1.0. The impacted element is an unknown function of the file /admin/modules/class/index.php. This manipulation of the argument classId causes sql injection. The attack may be initiated remotely. The exploit has...
itsourcecode Student Information Management System SQL注入漏洞
itsourcecode Student Information Management System is itsourcecode open source student information management system. Itsourcecode Student Information Management System version 1.0 has a SQL injection vulnerability, the vulnerability stems from the wrong operation of the parameter classId in the...
DEBIAN-CVE-2025-21971
In the Linux kernel, the following vulnerability has been resolved: netsched: Prevent creation of classes with TCHROOT The function qdisctreereducebacklog uses TCHROOT as a termination condition when traversing up the qdisc tree to update parent backlog counters. However, if a class is created wi...
CVE-2024-54920
A SQL Injection vulnerability was found in /teachersignup.php of kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL command to get unauthorized database access via the firstname, lastname, and classid parameters...
PT-2024-36438 · Unknown · Kashipara E-Learning Management System
Name of the Vulnerable Software and Affected Versions: kashipara E-learning Management System version 1.0 Description: A SQL injection issue was found in the /teacher signup.php file, allowing remote attackers to execute arbitrary SQL commands and gain unauthorized access to the database through...
CVE-2024-37791
DuxCMS3 v3.1.3 was discovered to contain a SQL injection vulnerability via the keyword parameter at /article/Content/index?classid...
CVE-2024-0389
A vulnerability, which was classified as critical, was found in SourceCodester Student Attendance System 1.0. Affected is an unknown function of the file attendancereport.php. The manipulation of the argument classid leads to sql injection. The exploit has been disclosed to the public and may be...
PT-2024-15521 · Unknown · Sourcecodester Simple Student Attendance System
Name of the Vulnerable Software and Affected Versions: SourceCodester Student Attendance System version 1.0 Description: A critical vulnerability was found in the SourceCodester Student Attendance System. The issue affects an unknown function of the file attendance report.php. The manipulation of...
CVE-2023-48716
Student Result Management System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'classid' parameter of the addclasses.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-6658
A vulnerability classified as critical was found in SourceCodester Simple Student Attendance System 1.0. This vulnerability affects unknown code of the file ajax-api.php?action=saveattendance. The manipulation of the argument classid leads to sql injection. The exploit has been disclosed to the...
CVE-2023-6617
A vulnerability was found in SourceCodester Simple Student Attendance System 1.0. It has been classified as critical. Affected is an unknown function of the file attendance.php. The manipulation of the argument classid leads to sql injection. The exploit has been disclosed to the public and may b...
PT-2023-32719 · Sourcecodester · Sourcecodester Simple Student Attendance System
Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Student Attendance System version 1.0 Description: A critical issue has been found in the attendance.php file, where the manipulation of the class id argument leads to sql injection. The exploit has been disclosed to the...