Lucene search
+L

65 matches found

Vulnrichment
Vulnrichment
added 2023/08/03 12:0 a.m.12 views

CVE-2023-36134

In PHP Jabbers Class Scheduling System 1.0, lack of verification when changing an email address and/or password on the Profile Page allows remote attackers to take over accounts...

7.3AI score0.00416EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/08/03 12:0 a.m.16 views

CVE-2023-36137

There is a Cross Site Scripting XSS vulnerability in the "theme" parameter of preview.php in PHPJabbers Class Scheduling System 1.0...

5.9AI score0.00312EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/08/03 12:0 a.m.12 views

CVE-2023-36135

User enumeration is found in in PHPJabbers Class Scheduling System v1.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users...

7AI score0.00473EPSS
Exploits0References2
CVE
CVE
added 2023/08/03 12:0 a.m.30 views

CVE-2023-36134

CVE-2023-36134 affects PHP Jabbers Class Scheduling System 1.0. The issue is a lack of verification when changing an email address and/or password on the Profile Page, enabling remote attackers to take over accounts. No exploit vectors or affected versions beyond 1.0 are specified in the provided...

9.8CVSS9.5AI score0.00416EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/08/03 12:0 a.m.7 views

Class Scheduling System Security Vulnerability

Class Scheduling System is a class scheduling system by jkev Personal Developer. A security vulnerability exists in Class Scheduling System version 1.0. The vulnerability originates in the password recovery function, where a message difference can be used to determine whether a user is valid or...

7.5CVSS6.8AI score0.00473EPSS
Exploits0References4
CNVD
CNVD
added 2023/05/23 12:0 a.m.31 views

Class Scheduling System Cross-Site Scripting Vulnerability

Class Scheduling System is a class scheduling system. A cross-site scripting vulnerability exists in Class Scheduling System v1.0, which originates from the lack of effective filtering and escaping of user-supplied data in the AcademicRank parameter of the file /admin/saveteacher.php in the...

6.1CVSS6.3AI score0.0059EPSS
Exploits1References1
OSV
OSV
added 2023/05/21 8:15 a.m.3 views

CVE-2023-2826

A vulnerability has been found in SourceCodester Class Scheduling System 1.0 and classified as problematic. This vulnerability affects unknown code of the file searchteacherresult.php of the component POST Parameter Handler. The manipulation of the argument teacher leads to cross site scripting...

5.4CVSS3.8AI score0.0065EPSS
Exploits1References3
NVD
NVD
added 2023/05/21 8:15 a.m.23 views

CVE-2023-2826

A vulnerability has been found in SourceCodester Class Scheduling System 1.0 and classified as problematic. This vulnerability affects unknown code of the file searchteacherresult.php of the component POST Parameter Handler. The manipulation of the argument teacher leads to cross site scripting...

5.4CVSS4.3AI score0.0065EPSS
Exploits1References3
Prion
Prion
added 2023/05/21 8:15 a.m.19 views

Cross site scripting

A vulnerability has been found in SourceCodester Class Scheduling System 1.0 and classified as problematic. This vulnerability affects unknown code of the file searchteacherresult.php of the component POST Parameter Handler. The manipulation of the argument teacher leads to cross site scripting...

4CVSS5.4AI score0.0065EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2023/05/21 7:31 a.m.51 views

CVE-2023-2826

CVE-2023-2826 affects SourceCodester Class Scheduling System 1.0. The vulnerability is in the POST Parameter Handler, specifically the file search_teacher_result.php, where manipulating the POST parameter teacher enables cross-site scripting. Exploitation is remote and has been publicly disclosed...

5.4CVSS4.5AI score0.0065EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/05/21 7:31 a.m.8 views

CVE-2023-2826 SourceCodester Class Scheduling System POST Parameter search_teacher_result.php cross site scripting

A vulnerability has been found in SourceCodester Class Scheduling System 1.0 and classified as problematic. This vulnerability affects unknown code of the file searchteacherresult.php of the component POST Parameter Handler. The manipulation of the argument teacher leads to cross site scripting...

4CVSS5.3AI score0.0065EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/05/21 12:0 a.m.5 views

PT-2023-21640 · Sourcecodester · Sourcecodester Class Scheduling System

Name of the Vulnerable Software and Affected Versions: SourceCodester Class Scheduling System version 1.0 Description: A vulnerability has been found in the SourceCodester Class Scheduling System, affecting the file search teacher result.php of the component POST Parameter Handler. The manipulati...

5.4CVSS7AI score0.0065EPSS
Exploits1References6
Prion
Prion
added 2023/05/20 8:15 a.m.23 views

Sql injection

A vulnerability was found in SourceCodester Class Scheduling System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/editsubject.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql...

6.5CVSS9.7AI score0.00754EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/05/20 7:31 a.m.28 views

CVE-2023-2823 SourceCodester Class Scheduling System GET Parameter edit_subject.php sql injection

A vulnerability was found in SourceCodester Class Scheduling System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/editsubject.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql...

6.5CVSS10AI score0.00754EPSS
Exploits1References3
CVE
CVE
added 2023/05/20 7:31 a.m.58 views

CVE-2023-2823

CVE-2023-2823 affects SourceCodester Class Scheduling System 1.0. The vulnerability lies in the GET Parameter Handler for the file /admin/edit_subject.php, where manipulating the id parameter causes SQL injection. It is exploitable remotely, and publicized exploits exist (VDB-229597). Multiple so...

9.8CVSS8.3AI score0.00754EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2023/05/20 12:0 a.m.7 views

SourceCodester Class Scheduling System SQL注入漏洞

Class Scheduling System is a class scheduling system by jkev individual developer. A SQL injection vulnerability exists in SourceCodester Class Scheduling System version 1.0, which is caused by an unknown function in the file /admin/editsubject.php in the component GET Parameter Handler, which...

9.8CVSS7AI score0.00754EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2023/05/20 12:0 a.m.10 views

PT-2023-21638 · Sourcecodester · Sourcecodester Class Scheduling System

Name of the Vulnerable Software and Affected Versions: SourceCodester Class Scheduling System version 1.0 Description: A critical issue was found in the SourceCodester Class Scheduling System, affecting an unknown functionality of the file /admin/edit subject.php, specifically the GET Parameter...

9.8CVSS7.1AI score0.00754EPSS
Exploits1References5
NVD
NVD
added 2023/05/19 5:15 p.m.23 views

CVE-2023-2814

A vulnerability classified as problematic has been found in SourceCodester Class Scheduling System 1.0. Affected is an unknown function of the file /admin/saveteacher.php of the component POST Parameter Handler. The manipulation of the argument AcademicRank leads to cross site scripting. It is...

6.1CVSS4.5AI score0.0059EPSS
Exploits1References3
OSV
OSV
added 2023/05/19 5:15 p.m.7 views

CVE-2023-2814

A vulnerability classified as problematic has been found in SourceCodester Class Scheduling System 1.0. Affected is an unknown function of the file /admin/saveteacher.php of the component POST Parameter Handler. The manipulation of the argument AcademicRank leads to cross site scripting. It is...

6.1CVSS3.9AI score0.0059EPSS
Exploits1References3
Prion
Prion
added 2023/05/19 5:15 p.m.23 views

Cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Class Scheduling System 1.0. Affected is an unknown function of the file /admin/saveteacher.php of the component POST Parameter Handler. The manipulation of the argument AcademicRank leads to cross site scripting. It is...

4CVSS6AI score0.0059EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder