4 matches found
CVE-2023-5010
Student Information System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'coursecode' parameter of the marks.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-5010 Student Information System v1.0 - Multiple Authenticated SQL Injections (SQLi)
Student Information System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'coursecode' parameter of the marks.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-5010 Student Information System v1.0 - Multiple Authenticated SQL Injections (SQLi)
Student Information System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'coursecode' parameter of the marks.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-5010
CVE-2023-5010 affects Student Information System v1.0. The vulnerability is a set of multiple authenticated SQL Injection flaws in marks.php where the coursecode parameter is not validated, sending unfiltered input to the database. The CVSS v3.1 base metrics indicate a HIGH impact (8.8) with NETW...