Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Cvelist
Cvelistadded 2024/08/09 12:0 a.m.11 views

CVE-2024-41332

Incorrect access control in the deletecategory function of Sourcecodester Computer Laboratory Management System v1.0 allows authenticated attackers with low-level privileges to arbitrarily delete categories...

0.00084EPSS
Exploits3References2
CVE
CVEadded 2024/06/20 12:0 a.m.47 views

CVE-2024-31586

CVE-2024-31586 affects Computer Laboratory Management System v1.0. The vulnerability is a Cross Site Scripting (XSS) flaw that allows a remote attacker to execute arbitrary code via the Borrower Name, Department, and Remarks parameters. The reported impact is limited to the ability to run code wi...

6.1CVSS6.4AI score0.00268EPSS
Exploits2References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/04/22 12:0 a.m.9 views

CVE-2024-31545

Computer Laboratory Management System v1.0 is vulnerable to SQL Injection via the "id" parameter of /admin/?page=user/manageuser&id=6...

8.1AI score0.0008EPSS
Exploits1References1
NVD
NVDadded 2024/04/19 6:15 p.m.10 views

CVE-2024-31546

Computer Laboratory Management System v1.0 is vulnerable to SQL Injection via the "id" parameter of /admin/damage/viewdamage.php...

9.8CVSS7.6AI score0.00126EPSS
Exploits1References1
NVD
NVDadded 2024/04/09 1:15 p.m.8 views

CVE-2024-31544

A stored cross-site scripting XSS vulnerability in Computer Laboratory Management System v1.0 allows attackers to execute arbitrary JavaScript code by including malicious payloads into “remarks”, “borrowername”, “facultydepartment” parameters in /classes/Master.php?f=saverecord...

5.4CVSS5.6AI score0.0015EPSS
Exploits1References1
CVE
CVEadded 2024/04/09 12:0 a.m.38 views

CVE-2024-31544

CVE-2024-31544 applies to the Computer Laboratory Management System v1.0. The vulnerability is a stored cross-site scripting (XSS) flaw that allows an attacker to inject arbitrary JavaScript through the fields “remarks”, “borrower_name” and “faculty_department” in the API endpoint /classes/Master...

5.4CVSS5.8AI score0.0015EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/04/06 12:0 p.m.15 views

CVE-2024-3377 SourceCodester Computer Laboratory Management System cross site scripting

A vulnerability classified as problematic was found in SourceCodester Computer Laboratory Management System 1.0. This vulnerability affects unknown code of the file /classes/SystemSettings.php?f=updatesettings. The manipulation of the argument name leads to cross site scripting. The attack can be...

5CVSS6.3AI score0.00085EPSS
Exploits1References4
CVE
CVEadded 2024/04/04 9:31 p.m.57 views

CVE-2024-3316

The CVE-2024-3316 entry concerns SourceCodester Computer Laboratory Management System 1.0. Affected functionality is the file /admin/category/view_category.php where manipulating the id parameter causes SQL injection. The issue is exploitable remotely and the exploit has been publicly disclosed, ...

8.8CVSS6.8AI score0.00138EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder