19 matches found
EUVD-2025-1547
Malicious code in bioql PyPI...
EUVD-2025-1548
Malicious code in bioql PyPI...
CVE-2025-0211
A vulnerability was found in Campcodes School Faculty Scheduling System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/index.php. The manipulation of the argument page leads to file inclusion. The attack may be launched remotely. The exploi...
CVE-2025-0210
A vulnerability has been found in Campcodes School Faculty Scheduling System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/ajax.php?action=login. The manipulation of the argument username leads to sql injection. The attack can be...
CVE-2025-0211
A vulnerability was found in Campcodes School Faculty Scheduling System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/index.php. The manipulation of the argument page leads to file inclusion. The attack may be launched remotely. The exploi...
CVE-2025-0211
A vulnerability was found in Campcodes School Faculty Scheduling System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/index.php. The manipulation of the argument page leads to file inclusion. The attack may be launched remotely. The exploi...
CVE-2025-0211 Campcodes School Faculty Scheduling System index.php file inclusion
A vulnerability was found in Campcodes School Faculty Scheduling System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/index.php. The manipulation of the argument page leads to file inclusion. The attack may be launched remotely. The exploi...
CVE-2025-0211 Campcodes School Faculty Scheduling System index.php file inclusion
A vulnerability was found in Campcodes School Faculty Scheduling System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/index.php. The manipulation of the argument page leads to file inclusion. The attack may be launched remotely. The exploi...
CVE-2025-0211
CVE-2025-0211 affects Campcodes School Faculty Scheduling System v1.0. The vulnerability is in /admin/index.php, where manipulating the page parameter leads to file inclusion. Described as a remote‑exploitable issue with publicly disclosed exploit. Remediation guidance is not in the Initial Descr...
CVE-2025-0210 Campcodes School Faculty Scheduling System ajax.php sql injection
A vulnerability has been found in Campcodes School Faculty Scheduling System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/ajax.php?action=login. The manipulation of the argument username leads to sql injection. The attack can be...
CVE-2025-0210 Campcodes School Faculty Scheduling System ajax.php sql injection
A vulnerability has been found in Campcodes School Faculty Scheduling System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/ajax.php?action=login. The manipulation of the argument username leads to sql injection. The attack can be...
CVE-2025-0210
CVE-2025-0210 affects Campcodes School Faculty Scheduling System v1.0. The vulnerability is an SQL injection in the parameter username of the file /admin/ajax.php?action=login, enabling remote exploitation. Multiple sources confirm the issue and public exploit availability. The CVSS metrics in th...
CVE-2020-36034
SQL Injection vulnerability in oretnom23 School Faculty Scheduling System version 1.0, allows remote attacker to execute arbitrary code, escalate privilieges, and gain sensitive information via crafted payload to id parameter in manageuser.php...
CVE-2020-36034
CVE-2020-36034 describes an SQL injection in the oretnom23 School Faculty Scheduling System v1.0, triggered via the id parameter in manage_user.php. The connected sources consistently state that lack of input validation allows an attacker to manipulate SQL statements, potentially enabling remote ...
CVE-2020-36034
SQL Injection vulnerability in oretnom23 School Faculty Scheduling System version 1.0, allows remote attacker to execute arbitrary code, escalate privilieges, and gain sensitive information via crafted payload to id parameter in manageuser.php...
School Faculty Scheduling System 1.0 - 'username' SQL Injection
Exploit Title: School Faculty Scheduling System 1.0 - 'username' SQL Injection Date: 22/10/2020 Exploit Author: Jyotsna Adhana Vendor Homepage: https://www.sourcecodester.com/php/14535/school-faculty-scheduling-system-using-phpmysqli-source-code.html Software Link:...
School Faculty Scheduling System 1.0 - 'id' SQL Injection
Exploit Title: School Faculty Scheduling System 1.0 - 'id' SQL Injection Date: 22/10/2020 Exploit Author: Jyotsna Adhana Vendor Homepage: https://www.sourcecodester.com/php/14535/school-faculty-scheduling-system-using-phpmysqli-source-code.html Software Link:...
School Faculty Scheduling System 1.0 - Stored Cross Site Scripting POC
Exploit Title: School Faculty Scheduling System 1.0 - Stored Cross Site Scripting Date: 21/10/2020 Exploit Author: Jyotsna Adhana Vendor Homepage: https://www.sourcecodester.com/php/14535/school-faculty-scheduling-system-using-phpmysqli-source-code.html Software Link:...
School Faculty Scheduling System 1.0 Cross Site Scripting
Exploit Title: School Faculty Scheduling System 1.0 - Stored Cross Site Scripting Date: 21/10/2020 Exploit Author: Jyotsna Adhana Vendor Homepage: https://www.sourcecodester.com/php/14535/school-faculty-scheduling-system-using-phpmysqli-source-code.html Software Link:...