7 matches found
EUVD-2025-32611
A vulnerability was found in code-projects Student Crud Operation up to 3.3. This vulnerability affects the function moveuploadedfile of the file add.php of the component Add Student Page/Edit Student Page. Performing manipulation results in unrestricted upload. The attack can be initiated...
CVE-2025-11347
CVE-2025-11347 affects code-projects Student Crud Operation up to 3.3, where the function move_uploaded_file in add.php allows unrestricted file upload. The vulnerability can be triggered remotely and the exploit has been publicized. Affected versions are stated as up to 3.3; sources suggest that...
PT-2025-40957
Name of the Vulnerable Software and Affected Versions code-projects Student Crud Operation versions up to 3.3 Description A flaw exists in code-projects Student Crud Operation that allows for unrestricted file uploads. This is due to manipulation of the move uploaded file function within the...
EUVD-2025-26233
Malicious code in bioql PyPI...
CVE-2025-11061
A vulnerability was found in Campcodes Online Learning Management System 1.0. This affects an unknown part of the file /admin/editstudent.php. Performing manipulation of the argument cys results in sql injection. The attack is possible to be carried out remotely. The exploit has been made public...
CVE-2025-9665
A weakness has been identified in code-projects Simple Grading System 1.0. Affected by this vulnerability is an unknown functionality of the file /editstudent.php of the component Admin Panel. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The...
CVE-2025-9665
The CVE covers code-projects Simple Grading System 1.0, where the Admin Panel’s /edit_student.php contains a vulnerability in the ID parameter that allows SQL injection. This is exploitable remotely, with public exploit material available. Affected component is the Admin Panel through an unknown ...