Lucene search
K

210 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 6:50 a.m.8 views

CVE-2024-54921

A SQL Injection was found in /studentsignup.php in kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL commands to get unauthorized database access via the username, firstname, lastname, and classid parameters...

9.8CVSS8.9AI score0.00583EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:50 a.m.9 views

CVE-2024-54928

kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/deleteteacher.php,...

7.2CVSS7.3AI score0.00475EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:50 a.m.12 views

CVE-2024-54934

Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/deleteclass.php...

9.8CVSS9.8AI score0.00496EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:49 a.m.9 views

CVE-2024-11321

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Hi e-learning Learning Management System LMS allows Reflected XSS. This issue affects Learning Management System LMS: before 06.12.2024...

5.4CVSS5.8AI score0.00303EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:8 a.m.11 views

CVE-2022-2697

A vulnerability was found in SourceCodester Simple E-Learning System. It has been classified as critical. Affected is an unknown function of the file commentframe.php. The manipulation of the argument postid leads to sql injection. It is possible to launch the attack remotely. The exploit has bee...

7.5CVSS7.4AI score0.00512EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:5 a.m.12 views

CVE-2022-2704

A vulnerability was found in SourceCodester Simple E-Learning System. It has been declared as problematic. This vulnerability affects unknown code of the file downloadFiles.php. The manipulation of the argument download leads to information disclosure. The attack can be initiated remotely. The...

7.5CVSS6.7AI score0.00656EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:44 a.m.14 views

CVE-2022-2701

A vulnerability classified as problematic was found in SourceCodester Simple E-Learning System. This vulnerability affects unknown code of the file /claireblake. The manipulation of the argument Bio leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclose...

6.1CVSS6.4AI score0.00439EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:39 a.m.17 views

CVE-2022-40872

An SQL injection vulnerability issue was discovered in Sourcecodester Simple E-Learning System 1.0., in /vcs/classRoom.php?classCode=, classCode...

9.8CVSS8AI score0.00872EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:58 p.m.13 views

CVE-2022-43319

An information disclosure vulnerability in the component vcs/downloadFiles.php?download=./search.php of Simple E-Learning System v1.0 allows attackers to read arbitrary files...

7.5CVSS6.4AI score0.00706EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:45 p.m.9 views

CVE-2022-2396

A vulnerability classified as problematic was found in SourceCodester Simple e-Learning System 1.0. Affected by this vulnerability is an unknown functionality of the file /vcs/claireblake. The manipulation of the argument Bio with the input " leads to cross site scripting. The attack can be...

5.4CVSS6.2AI score0.00479EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:35 p.m.11 views

CVE-2022-2698

A vulnerability was found in SourceCodester Simple E-Learning System. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument searchPost leads to sql injection. The attack can be launched remotely. The...

9.8CVSS7.3AI score0.00613EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:34 p.m.11 views

CVE-2022-2665

A vulnerability classified as critical was found in SourceCodester Simple E-Learning System. Affected by this vulnerability is an unknown functionality of the file classroom.php. The manipulation of the argument postid leads to sql injection. The attack can be launched remotely. The exploit has...

8.8CVSS7.4AI score0.00494EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:31 p.m.8 views

CVE-2022-2489

A vulnerability was found in SourceCodester Simple E-Learning System 1.0. It has been rated as critical. This issue affects some unknown processing of the file classRoom.php. The manipulation of the argument classCode with the input 1'||SELECT 0x6770715a WHERE 8795=8795 AND SELECT 8342 FROMSELECT...

8.8CVSS7.3AI score0.00625EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:29 p.m.7 views

CVE-2021-3239

E-Learning System 1.0 suffers from an unauthenticated SQL injection vulnerability, which allows remote attackers to execute arbitrary code on the hosting web server and gain a reverse shell...

9.8CVSS9.1AI score0.17933EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:14 p.m.6 views

CVE-2020-14972

Multiple SQL injection vulnerabilities in Sourcecodester Pisay Online E-Learning System 1.0 allow remote unauthenticated attackers to bypass authentication and achieve Remote Code Execution RCE via the useremail, userpass, and id parameters on the admin login-portal and the edit-lessons webpages...

9.8CVSS9.3AI score0.05392EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/02/25 7:22 p.m.15 views

CVE-2025-1590

A vulnerability was found in SourceCodester E-Learning System 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/modules/lesson/index.php of the component List of Lessons Page. The manipulation leads to unrestricted upload. It is possible to launch the...

7.2CVSS6.8AI score0.00367EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/25 6:30 p.m.18 views

CVE-2025-1589

A vulnerability was found in SourceCodester E-Learning System 1.0 and classified as problematic. This issue affects some unknown processing of the file /register.php of the component User Registration Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely...

6.1CVSS6.2AI score0.00446EPSS
Exploits0References1
NVD
NVD
added 2025/02/23 7:15 p.m.13 views

CVE-2025-1590

A vulnerability was found in SourceCodester E-Learning System 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/modules/lesson/index.php of the component List of Lessons Page. The manipulation leads to unrestricted upload. It is possible to launch the...

7.2CVSS0.00367EPSS
Exploits0References4
OSV
OSV
added 2025/02/23 7:15 p.m.6 views

CVE-2025-1590

A vulnerability was found in SourceCodester E-Learning System 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/modules/lesson/index.php of the component List of Lessons Page. The manipulation leads to unrestricted upload. It is possible to launch the...

7.2CVSS5.4AI score0.00367EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/02/23 6:31 p.m.16 views

CVE-2025-1590 SourceCodester E-Learning System List of Lessons Page index.php unrestricted upload

A vulnerability was found in SourceCodester E-Learning System 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/modules/lesson/index.php of the component List of Lessons Page. The manipulation leads to unrestricted upload. It is possible to launch the...

5.8CVSS0.00367EPSS
Exploits0References4
Rows per page
Query Builder