Lucene search
K

4 matches found

NVD
NVD
added 2023/12/20 4:15 p.m.22 views

CVE-2023-5010

Student Information System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'coursecode' parameter of the marks.php resource does not validate the characters received and they are sent unfiltered to the database...

8.8CVSS0.00673EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/12/20 3:55 p.m.20 views

CVE-2023-5010 Student Information System v1.0 - Multiple Authenticated SQL Injections (SQLi)

Student Information System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'coursecode' parameter of the marks.php resource does not validate the characters received and they are sent unfiltered to the database...

8.8CVSS10AI score0.00673EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/12/20 3:55 p.m.9 views

CVE-2023-5010 Student Information System v1.0 - Multiple Authenticated SQL Injections (SQLi)

Student Information System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'coursecode' parameter of the marks.php resource does not validate the characters received and they are sent unfiltered to the database...

8.8CVSS9.2AI score0.00673EPSS
Exploits1References2
CVE
CVE
added 2023/12/20 3:55 p.m.48 views

CVE-2023-5010

CVE-2023-5010 affects Student Information System v1.0. The vulnerability is a set of multiple authenticated SQL Injection flaws in marks.php where the coursecode parameter is not validated, sending unfiltered input to the database. The CVSS v3.1 base metrics indicate a HIGH impact (8.8) with NETW...

8.8CVSS9.6AI score0.00673EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder