Lucene search
K

757 matches found

NVD
NVD
added 2024/12/09 2:15 p.m.15 views

CVE-2024-54937

A Directory Listing issue was found in Kashipara E-Learning Management System v1.0, which allows remote attackers to access sensitive files and directories via /admin/assets...

5.3CVSS0.00452EPSS
Exploits1References1
OSV
OSV
added 2024/12/09 2:15 p.m.5 views

CVE-2024-54936

A Stored Cross-Site Scripting XSS vulnerability was found in /sendmessage.php of Kashipara E-learning Management System v1.0. This vulnerability allows remote attackers to execute arbitrary scripts via the mymessage parameter...

5.4CVSS6AI score0.00395EPSS
Exploits1References1
NVD
NVD
added 2024/12/09 2:15 p.m.22 views

CVE-2024-54936

A Stored Cross-Site Scripting XSS vulnerability was found in /sendmessage.php of Kashipara E-learning Management System v1.0. This vulnerability allows remote attackers to execute arbitrary scripts via the mymessage parameter...

5.4CVSS0.00395EPSS
Exploits1References1
NVD
NVD
added 2024/12/09 2:15 p.m.17 views

CVE-2024-54929

KASHIPARA E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/deletesubject.php...

7.2CVSS0.00484EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/12/09 12:0 a.m.10 views

CVE-2024-54933

Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/deletecontent.php...

8AI score0.00469EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/12/09 12:0 a.m.11 views

CVE-2024-54930

Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/deletestudent.php...

8AI score0.00469EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/12/09 12:0 a.m.3 views

Kashipara E-learning Management System 安全漏洞

Kashipara E-learning Management System is a learning management system from Kashipara. A security vulnerability exists in Kashipara E-learning Management System v1.0. An attacker can exploit the vulnerability to access the database by executing arbitrary SQL commands via the title and content...

9.8CVSS7.6AI score0.00571EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/12/09 12:0 a.m.10 views

CVE-2024-54935

A Stored Cross-Site Scripting XSS vulnerability was found in /sendmessageteachertostudent.php of kashipara E-learning Management System v1.0. This vulnerability allows remote attackers to execute arbitrary scripts via the mymessage parameter...

6AI score0.0038EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/12/09 12:0 a.m.12 views

CVE-2024-54919

A Stored Cross Site Scripting XSS was found in /teacheravatar.php of kashipara E-learning Management System v1.0. This vulnerability allows remote attackers to execute arbitrary java script via the filename parameter...

7.1AI score0.003EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/12/09 12:0 a.m.16 views

CVE-2024-54938

A Directory Listing issue was found in Kashipara E-Learning Management System v1.0, which allows remote attackers to access sensitive files and directories via /admin/uploads...

0.00545EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/12/09 12:0 a.m.11 views

CVE-2024-54929

KASHIPARA E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/deletesubject.php...

8AI score0.00484EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/12/09 12:0 a.m.8 views

CVE-2024-54926

A SQL Injection vulnerability was found in /searchclass.php of kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL commands to get unauthorized database access via the schoolyear parameter...

9.3AI score0.00555EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/12/09 12:0 a.m.21 views

CVE-2024-54932

Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/deletedepartment.php...

0.00486EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/12/09 12:0 a.m.17 views

CVE-2024-54918

Kashipara E-learning Management System v1.0 is vulnerable to Remote Code Execution via File Upload in /teacheravatar.php...

0.00898EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/12/09 12:0 a.m.4 views

Kashipara E-learning Management System 安全漏洞

Kashipara E-learning Management System is a learning management system from Kashipara. A security vulnerability exists in Kashipara E-learning Management System v1.0, which originates from an SQL injection vulnerability in /admin/deletestudent.php...

9.8CVSS7.9AI score0.00469EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/12/09 12:0 a.m.7 views

PT-2024-36456 · Unknown · Kashipara E-Learning Management System

Name of the Vulnerable Software and Affected Versions: Kashipara E-Learning Management System version 1.0 Description: A Directory Listing issue was found in Kashipara E-Learning Management System, which allows remote attackers to access sensitive files and directories via the "/admin/uploads" AP...

7.5CVSS6.3AI score0.00545EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2024/12/09 12:0 a.m.4 views

PT-2024-36440 · Unknown · Kashipara E-Learning Management System

Name of the Vulnerable Software and Affected Versions: kashipara E-learning Management System version 1.0 Description: A SQL Injection issue was found in the /admin/edit user.php file, allowing remote attackers to execute arbitrary SQL commands and gain unauthorized access to the database via the...

9.8CVSS8.6AI score0.00551EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2024/12/09 12:0 a.m.7 views

PT-2024-36449 · Unknown · Kashipara E-Learning Management System

Name of the Vulnerable Software and Affected Versions: kashipara E-learning Management System version 1.0 Description: A SQL Injection issue was found in the /admin/delete event.php endpoint, allowing remote attackers to execute arbitrary SQL commands and gain unauthorized database access via the...

9.8CVSS8.7AI score0.00571EPSS
Exploits1References5
Cvelist
Cvelist
added 2024/12/09 12:0 a.m.22 views

CVE-2024-54936

A Stored Cross-Site Scripting XSS vulnerability was found in /sendmessage.php of Kashipara E-learning Management System v1.0. This vulnerability allows remote attackers to execute arbitrary scripts via the mymessage parameter...

0.00395EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/12/09 12:0 a.m.20 views

CVE-2024-54929

KASHIPARA E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/deletesubject.php...

0.00484EPSS
Exploits1References1
Rows per page
Query Builder