CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

CVE•added 2026/06/01 10:15 p.m.•16 views

CVE-2026-10297

The CVE-2026-10297 entry concerns itsourcecode Fees Management System 1.0. An SQL injection vulnerability exists in an unknown area of /manage_course.php triggered by manipulating the ID parameter. The issue allows remote initiation and is accompanied by a publicly available exploit. No vendor na...

6.5CVSS5.7AI score0.00037EPSS

Exploits0References6

Positive Technologies•added 2026/06/01 12:0 a.m.•12 views

PT-2026-45640

A vulnerability was identified in itsourcecode Fees Management System 1.0. This affects an unknown part of the file /manage course.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit is publicly available and might be used...

6.5CVSS5.7AI score0.00037EPSS

Exploits0References7

CNNVD•added 2026/03/02 12:0 a.m.•3 views

PHPGurukul Student Record Management System 代码注入漏洞

PHPGurukul Student Record Management System is a student record management system developed by PHPGurukul Corporation. Versions of the PHPGurukul Student Record Management System prior to 1.0 contained a code injection vulnerability. This vulnerability stemmed from incorrect handling of parameter...

4.8CVSS5.7AI score0.00044EPSS

Exploits1References6

OSV•added 2026/01/14 6:25 p.m.•3 views

CVE-2026-23497 Frappe LMS has a Stored XSS via Unsanitized Image Filename in Course and Jobs Pages

Frappe Learning Management System LMS is a learning system that helps users structure their content. In 2.44.0 and earlier, there is a stored XSS vulnerability where a specially crafted image filename could execute malicious JavaScript when rendered on course or jobs pages...

5.3CVSS5.4AI score0.00021EPSS

Exploits0References4

RedhatCVE•added 2025/11/15 12:47 a.m.•10 views

CVE-2024-44640

PHPGurukul Student Record System 3.20 is vulnerable to SQL Injection via the course-short, course-full, and cdate parameters in add-course.php...

6.5CVSS8AI score0.00039EPSS

Exploits1References1

NVD•added 2025/11/14 4:15 p.m.•4 views

CVE-2024-44640

PHPGurukul Student Record System 3.20 is vulnerable to SQL Injection via the course-short, course-full, and cdate parameters in add-course.php...

6.5CVSS0.00039EPSS

Exploits1References2

CNVD•added 2025/10/13 12:0 a.m.•2 views

Online Course Registration /admin/edit-course.php File SQL Injection Vulnerability

Online Course Registration is an online course registration system. Online Course Registration suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter coursecode in the file /admin/edit-course.php. An attacker ca...

9.8CVSS8.3AI score0.00042EPSS

Exploits1References1

Cvelist•added 2025/10/06 5:32 p.m.•8 views

CVE-2025-11342 code-projects Online Course Registration edit-course.php sql injection

A weakness has been identified in code-projects Online Course Registration 1.0. This impacts an unknown function of the file /admin/edit-course.php. Executing manipulation of the argument coursecode can lead to sql injection. The attack can be executed remotely. The exploit has been made availabl...

5.8CVSS0.00042EPSS

Exploits1References5

CNNVD•added 2025/04/30 12:0 a.m.•1 views

PHPGurukul Student Record System 注入漏洞

Student Record System is a software application. Student Record System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter course-short in the file /add-course.php. An attacker can exploit this vulnerability to...

9.8CVSS7.8AI score0.0011EPSS

Exploits1References5

CNNVD•added 2024/03/27 12:0 a.m.•1 views

Online Examination System SQL注入漏洞

SourceCodester Online Examination System is an online examination system from SourceCodester, Inc. A SQL injection vulnerability exists in Online Examination System version 1.0, which originates from a SQL injection vulnerability in the id parameter of the...

6.5CVSS7AI score0.00121EPSS

Exploits1References5

OSV•added 2023/11/02 7:15 p.m.•1 views

CVE-2023-5924

A vulnerability classified as critical was found in Campcodes Simple Student Information System 1.0. This vulnerability affects unknown code of the file /admin/courses/viewcourse.php. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may ...

7.5CVSS5.6AI score0.00046EPSS

Exploits1References3

Positive Technologies•added 2023/11/02 12:0 a.m.•4 views

PT-2023-32422 · Campcodes · Campcodes Simple Student Information System

Name of the Vulnerable Software and Affected Versions: Campcodes Simple Student Information System version 1.0 Description: A critical vulnerability was found in the system, affecting the file /admin/courses/view course.php. The manipulation of the id argument leads to SQL injection. The exploit...

7.5CVSS6.4AI score0.00046EPSS

Exploits1References8

SUSE CVE•added 2023/02/15 4:48 a.m.•4 views

SUSE CVE-2017-7298

In Moodle 3.2.2+, there is XSS in the Course summary filter of the "Add a new course" page, as demonstrated by a crafted attribute of an SVG element...

5.4CVSS6.2AI score0.00243EPSS

Exploits1References3

OSV•added 2017/03/29 5:59 a.m.•0 views

UBUNTU-CVE-2017-7298

In Moodle 3.2.2+, there is XSS in the Course summary filter of the "Add a new course" page, as demonstrated by a crafted attribute of an SVG element...

5.4CVSS5.8AI score0.00243EPSS

Exploits1References4

Openbugbounty•added 2015/10/06 5:15 p.m.•6 views

dragonjar.education XSS vulnerability

Vulnerable URL: http://www.dragonjar.education/curso/de-0-a-ninja-con-metasploit/?=" Details: Description| Value ---|--- Patched:| Yes, at 23.11.2017 Latest check for patch:| 23.11.2017 08:29 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 5196921 Google Pageran...

6.3AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by