156 matches found
CVE-2023-33440
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to arbitrary code execution via /eval/ajax.php?action=saveuser...
CVE-2023-33440
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to arbitrary code execution via /eval/ajax.php?action=saveuser...
CVE-2023-33440
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to arbitrary code execution via /eval/ajax.php?action=saveuser...
CVE-2023-33439
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/managetask.php?id=...
CVE-2023-33439
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/managetask.php?id=...
Sql injection
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/managetask.php?id=...
Code injection
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to arbitrary code execution via /eval/ajax.php?action=saveuser...
CVE-2023-33439
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/managetask.php?id=...
CVE-2023-33439
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/managetask.php?id=...
Faculty Evaluation System SQL注入漏洞
Faculty Evaluation System is a faculty evaluation system. A SQL injection vulnerability exists in Faculty Evaluation System, which can be exploited by an attacker to directly manipulate the database by constructing malicious query statements to obtain sensitive information or perform arbitrary...
Faculty Evaluation System 安全漏洞
Faculty Evaluation System is a faculty evaluation system by the individual developer Carlo Montero. A security vulnerability exists in Sourcecodester Faculty Evaluation System v1.0, which originates from an attack that can execute arbitrary code via /eval/ajax.php?action=saveuser...
CVE-2023-33439
Summary of CVE-2023-33439 : Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection through the endpoint /eval/admin/manage_task.php?id=. The connected nuclei template confirms the vulnerable component/parameter and notes a high-severity impact: arbitrary SQL execution that c...
CVE-2023-33440
CVE-2023-33440 affects Sourcecodester Faculty Evaluation System v1.0. The vulnerability is an arbitrary code execution via the endpoint /eval/ajax.php?action=save_user. CVSS v3.1 metrics indicate HIGH severity (7.2) with NETWORK attack vector, low complexity, and no user interaction required, gra...
CVE-2023-33440
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to arbitrary code execution via /eval/ajax.php?action=saveuser...
CVE-2023-31843
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/viewfaculty.php?id=...
CVE-2023-31842
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/index.php?page=editfaculty&id=...
CVE-2023-31844
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/managesubject.php?id=...
CVE-2023-31845
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/manageclass.php?id=...
CVE-2023-31843
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/viewfaculty.php?id=...
CVE-2023-31845
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/manageclass.php?id=...