Lucene search
K

4 matches found

OSV
OSV
added 2023/12/21 9:15 p.m.4 views

CVE-2023-48718

Student Result Management System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'classname' parameter of the addstudents.php resource does not validate the characters received and they are sent unfiltered to the database...

9.8CVSS5.8AI score0.00671EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/12/21 8:57 p.m.12 views

CVE-2023-48718 Student Result Management System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)

Student Result Management System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'classname' parameter of the addstudents.php resource does not validate the characters received and they are sent unfiltered to the database...

9.8CVSS8.4AI score0.00671EPSS
Exploits1References2
CVE
CVE
added 2023/12/21 8:57 p.m.32 views

CVE-2023-48718

The CVE-2023-48718 entry affects Student Result Management System v1.0, with unauthenticated SQL Injection via the add_students.php resource where the class_name parameter is not validated before sending to the database. Root cause: unsanitized user input reaching SQL queries. Impact: high (per C...

9.8CVSS10AI score0.00671EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2023/12/21 8:57 p.m.19 views

CVE-2023-48718 Student Result Management System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)

Student Result Management System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'classname' parameter of the addstudents.php resource does not validate the characters received and they are sent unfiltered to the database...

9.8CVSS10AI score0.00671EPSS
Exploits1References2
Rows per page
Query Builder