10 matches found
CVE-2026-34803
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting XSS via the name parameter to /manage/qos/classes/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page...
CVE-2025-5723
A vulnerability was found in SourceCodester Student Result Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /script/academic/classes of the component Classes Page. The manipulation of the argument Class Name leads to cross site scripting...
CVE-2025-5723 SourceCodester Student Result Management System Classes Page classes cross site scripting
A vulnerability was found in SourceCodester Student Result Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /script/academic/classes of the component Classes Page. The manipulation of the argument Class Name leads to cross site scripting...
CVE-2025-5723 SourceCodester Student Result Management System Classes Page classes cross site scripting
A vulnerability was found in SourceCodester Student Result Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /script/academic/classes of the component Classes Page. The manipulation of the argument Class Name leads to cross site scripting...
SourceCodester Student Result Management System 代码注入漏洞
SourceCodester Student Result Management System is a SourceCodester open source student result management system . A code injection vulnerability exists in SourceCodester Student Result Management System version 1.0, which originates from cross-site scripting due to incorrect manipulation of the...
CVE-2024-1923 SourceCodester Simple Student Attendance System List of Classes Page ajax-api.php delete_student sql injection
A vulnerability was found in SourceCodester Simple Student Attendance System 1.0 and classified as critical. Affected by this issue is the function deleteclass/deletestudent of the file /ajax-api.php of the component List of Classes Page. The manipulation of the argument id with the input...
CVE-2024-1923 SourceCodester Simple Student Attendance System List of Classes Page ajax-api.php delete_student sql injection
A vulnerability was found in SourceCodester Simple Student Attendance System 1.0 and classified as critical. Affected by this issue is the function deleteclass/deletestudent of the file /ajax-api.php of the component List of Classes Page. The manipulation of the argument id with the input...
CVE-2024-1022
A vulnerability, which was classified as problematic, was found in CodeAstro Simple Student Result Management System 5.6. This affects an unknown part of the file /addclasses.php of the component Add Class Page. The manipulation of the argument Class Name leads to cross site scripting. It is...
PT-2024-16123 · Codeastro · Codeastro Simple Student Result Management System
Name of the Vulnerable Software and Affected Versions: CodeAstro Simple Student Result Management System version 5.6 Description: A problematic issue was found in the CodeAstro Simple Student Result Management System. This issue affects the /add classes.php file of the Add Class Page component. T...
CodeAstro Simple Student Result Management System Cross-Site Scripting Vulnerability
Simple Student Result Management System is a student result management system by Farah Kharrat, an individual developer in Germany. A cross-site scripting vulnerability exists in CodeAstro Simple Student Result Management System version 5.6, which is caused by an unknown section of /addclasses.ph...