118 matches found
CVE-2023-31843
CVE-2023-31843 affects Sourcecodester Faculty Evaluation System v1.0, where the vulnerability is a SQL injection in the endpoint /eval/admin/view_faculty.php?id= (input parameter). The Red Hat/CNVD/CNNVD and other connected records confirm the same flaw across multiple sources. The underlying iss...
CVE-2023-31845
CVE-2023-31845 affects Sourcecodester Faculty Evaluation System v1.0. The vulnerability is a SQL Injection in the endpoint /eval/admin/manage_class.php?id= (unsanitized id parameter). The CVSS 3.1 vector indicates a NETWORK attack, with PR:High , UI:None , and impact on all three security goals (...
Faculty Evaluation System SQL注入漏洞
Faculty Evaluation System is a faculty evaluation system by the individual developer Carlo Montero. A security vulnerability exists in version v1.0 of the Sourcecodester Faculty Evaluation System, which originates in /eval/admin/manageclass.php?id=Existence of SQL injection...
CVE-2023-31845
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/manageclass.php?id=...
CVE-2023-2369
A vulnerability was found in SourceCodester Faculty Evaluation System 1.0. It has been rated as critical. This issue affects some unknown processing of the file admin/managerestriction.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The explo...
CVE-2023-2368
A vulnerability was found in SourceCodester Faculty Evaluation System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file index.php?page=managequestionnaire. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. Th...
CVE-2023-2367
A vulnerability was found in SourceCodester Faculty Evaluation System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/manageacademic.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploi...
Sql injection
A vulnerability was found in SourceCodester Faculty Evaluation System 1.0. It has been rated as critical. This issue affects some unknown processing of the file admin/managerestriction.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The explo...
Sql injection
A vulnerability was found in SourceCodester Faculty Evaluation System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/manageacademic.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploi...
CVE-2023-2369 SourceCodester Faculty Evaluation System manage_restriction.php sql injection
A vulnerability was found in SourceCodester Faculty Evaluation System 1.0. It has been rated as critical. This issue affects some unknown processing of the file admin/managerestriction.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The explo...
CVE-2023-2369
CVE-2023-2369 affects SourceCodester Faculty Evaluation System 1.0. A vulnerability exists in the admin/manage_restriction.php endpoint where the manipulation of the id argument enables SQL injection. The issue can be exploited remotely and, according to multiple sources, the exploit is public. S...
CVE-2023-2369 SourceCodester Faculty Evaluation System manage_restriction.php sql injection
A vulnerability was found in SourceCodester Faculty Evaluation System 1.0. It has been rated as critical. This issue affects some unknown processing of the file admin/managerestriction.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The explo...
CVE-2023-2368 SourceCodester Faculty Evaluation System sql injection
A vulnerability was found in SourceCodester Faculty Evaluation System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file index.php?page=managequestionnaire. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. Th...
CVE-2023-2368
CVE-2023-2368 describes a SQL injection vulnerability in SourceCodester Faculty Evaluation System 1.0, affecting the file index.php?page=manage_questionnaire where the id parameter is manipulable. Multiple connected sources confirm remote exploitation potential and public disclosure of the exploi...
CVE-2023-2367 SourceCodester Faculty Evaluation System manage_academic.php sql injection
A vulnerability was found in SourceCodester Faculty Evaluation System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/manageacademic.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploi...
CVE-2023-2367 SourceCodester Faculty Evaluation System manage_academic.php sql injection
A vulnerability was found in SourceCodester Faculty Evaluation System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/manageacademic.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploi...
CVE-2023-2367
CVE-2023-2367 affects SourceCodester Faculty Evaluation System 1.0. The vulnerability is an SQL injection in the /admin/manage_academic.php file via the id parameter. This can be exploited remotely and, according to sources, the exploit has been disclosed publicly. Multiple feeds (NVD, Red Hat, C...
CVE-2023-2366
A vulnerability was found in SourceCodester Faculty Evaluation System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file ajax.php?action=deleteclass. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The...
CVE-2023-2366
A vulnerability was found in SourceCodester Faculty Evaluation System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file ajax.php?action=deleteclass. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The...
Sql injection
A vulnerability was found in SourceCodester Faculty Evaluation System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file ajax.php?action=deleteclass. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The...