Lucene search
K

4 matches found

0day.today
0day.today
added 2021/12/09 12:0 a.m.281 views

Student Management System 1.0 - SQL injection Authentication Bypass Vulnerability

Exploit Title: Student Management System 1.0 - SQLi Authentication Bypass Exploit Author: Enes Özeser Vendor Homepage: https://www.sourcecodester.com/php/14268/student-management-system.html Version: 1.0 Tested on: Windows & WampServer CVE: CVE-2020-23935 1- Go to following url...

9.8CVSS0.3AI score0.15926EPSS
Exploits6
0day.today
0day.today
added 2021/12/09 12:0 a.m.455 views

Kabir Alhasan Student Management System 1.0 SQL Injection Vulnerability

Exploit Title: Student Management System 1.0 - SQLi Authentication Bypass Exploit Author: Enes Özeser Vendor Homepage: https://www.sourcecodester.com/php/14268/student-management-system.html Version: 1.0 Tested on: Windows & WampServer CVE: CVE-2020-23935 1- Go to following url...

9.8CVSS0.4AI score0.15926EPSS
Exploits6
NVD
NVD
added 2020/08/20 3:15 p.m.28 views

CVE-2020-23935

Kabir Alhasan Student Management System 1.0 is vulnerable to Authentication Bypass via "Username: admin' && Password: Write Something"...

9.8CVSS9.4AI score0.15926EPSS
Exploits6References2
CVE
CVE
added 2020/08/20 2:9 p.m.66 views

CVE-2020-23935

CVE-2020-23935 affects Kabir Alhasan Student Management System 1.0. An authentication bypass is possible via a crafted login payload, e.g., Username: admin'# and any Password, allowing bypass of the login check through the admin path (process.php). Multiple sources corroborate an SQLi- or bypass-...

9.8CVSS9.3AI score0.15926EPSS
Exploits6References2Affected Software1
Rows per page
Query Builder