Lucene search
K

55 matches found

OSV
OSV
added 2025/06/10 9:15 p.m.6 views

CVE-2025-5979

A vulnerability classified as critical has been found in code-projects School Fees Payment System 1.0. This affects an unknown part of the file /branch.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed t...

9.8CVSS5.8AI score0.00421EPSS
Exploits1References5
OSV
OSV
added 2025/06/10 8:15 p.m.6 views

CVE-2025-5977

A vulnerability was found in code-projects School Fees Payment System 1.0 and classified as critical. This issue affects some unknown processing of the file /datatable.php. The manipulation of the argument sSortDir0 leads to sql injection. The attack may be initiated remotely. The exploit has bee...

9.8CVSS5.8AI score0.00421EPSS
Exploits1References5
OSV
OSV
added 2025/06/10 6:15 p.m.5 views

CVE-2025-5971

A vulnerability was found in code-projects School Fees Payment System 1.0. It has been classified as critical. This affects an unknown part of the file /ajx.php. The manipulation of the argument namestartsWith leads to sql injection. It is possible to initiate the attack remotely. The exploit has...

8.8CVSS5.8AI score0.0049EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/06/10 12:0 a.m.4 views

Code-Projects School Fees Payment System 安全漏洞

School Fees Payment System is a tuition payment system. The School Fees Payment System suffers from a SQL injection vulnerability that originates from a lack of validation of externally-entered SQL statements in the parameter namestartsWith in the file /ajx.php. An attacker can exploit this...

8.8CVSS7AI score0.0049EPSS
Exploits1References8
CNNVD
CNNVD
added 2025/06/10 12:0 a.m.6 views

Code-Projects School Fees Payment System 注入漏洞

School Fees Payment System is a tuition payment system. The School Fees Payment System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter sSortDir0 in the file /datatable.php. An attacker can exploit this...

9.8CVSS7.9AI score0.00421EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2025/05/23 2:29 a.m.3 views

CVE-2023-3381

A vulnerability classified as problematic was found in SourceCodester Online School Fees System 1.0. Affected by this vulnerability is an unknown functionality of the file /paysystem/datatable.php of the component GET Parameter Handler. The manipulation of the argument doj leads to cross site...

6.1CVSS6.2AI score0.00557EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:59 a.m.7 views

CVE-2023-3189

A vulnerability, which was classified as problematic, was found in SourceCodester Online School Fees System 1.0. This affects an unknown part of the file /paysystem/branch.php of the component POST Parameter Handler. The manipulation of the argument branch leads to cross site scripting. It is...

6.1CVSS6.2AI score0.00562EPSS
Exploits1References1
OSV
OSV
added 2024/07/28 7:15 p.m.4 views

CVE-2024-7168

A vulnerability was found in SourceCodester School Fees Payment System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /manageuser.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit...

8.8CVSS5.8AI score0.00532EPSS
Exploits1References4
OSV
OSV
added 2024/07/28 7:15 p.m.2 views

CVE-2024-7167

A vulnerability was found in SourceCodester School Fees Payment System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /managecourse.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely...

8.8CVSS5.7AI score0.00532EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/07/28 12:0 a.m.4 views

SourceCodester School Fees Payment System 安全漏洞

SourceCodester School Fees Payment System is a school fees payment system. A security vulnerability exists in version 1.0 of the SourceCodester School Fees Payment System due to an SQL injection vulnerability in the username parameter of the /ajax.php?action=login file...

9.8CVSS7.8AI score0.00646EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2024/03/21 2:49 a.m.3 views

CVE-2023-49984

A cross-site scripting XSS vulnerability in the component /management/settings of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...

6.1CVSS5.9AI score0.00483EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/03/21 12:0 a.m.2 views

School Fees Management System 安全漏洞

School Fees Management System is a tuition management system. A security vulnerability exists in School Fees Management System v1.0, which originates from a cross-site scripting XSS vulnerability in /management/settings...

6.1CVSS5.8AI score0.00483EPSS
Exploits1References3
OSV
OSV
added 2024/03/07 1:15 a.m.3 views

CVE-2023-49987

A cross-site scripting XSS vulnerability in the component /management/term of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the tname parameter...

5.4CVSS5.8AI score0.00431EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/03/07 12:0 a.m.5 views

School Fees Management System Security Breach

School Fees Management System is a tuition management system. A security vulnerability exists in School Fees Management System v1.0. The vulnerability can be exploited by an attacker to execute arbitrary web script or HTML via a specially crafted payload that injects the tname parameter...

5.4CVSS6.7AI score0.00431EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2024/02/29 2:15 a.m.3 views

CVE-2023-51800

Cross Site Scripting XSS vulnerability in School Fees Management System v.1.0 allows a remote attacker to execute arbitrary code via a crafted payload to the mainsettings component in the phone, address, bank, accname, accnumber parameters, newclass and cname parameter, addnewparent function in t...

6.1CVSS6.2AI score0.00628EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/02/29 12:0 a.m.4 views

School Fees Management System Security Breach

School Fees Management System is a tuition management system. A security vulnerability exists in School Fees Management System version v.1.0. An attacker could exploit this vulnerability to conduct cross-site scripting attacks...

6.1CVSS6.1AI score0.00628EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/12/20 12:0 a.m.7 views

PT-2023-31443 · Unknown · School Management System

Name of the Vulnerable Software and Affected Versions: School Fees Management System version 1.0 Description: A cross-site scripting XSS issue in the /management/settings component allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...

6.1CVSS6AI score0.00483EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2023/12/20 12:0 a.m.5 views

PT-2023-31442 · Unknown · School Management System

Name of the Vulnerable Software and Affected Versions: School Fees Management System version 1.0 Description: A cross-site scripting XSS issue in the /management/class component allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...

6.8CVSS6AI score0.00574EPSS
Exploits1References4
CNVD
CNVD
added 2023/06/25 12:0 a.m.16 views

Online School Fees System SQL Injection Vulnerability

Online School Fees System is an online tuition system. A SQL injection vulnerability exists in Online School Fees System v1.0, which originates from a lack of validation of the parameter namestartsWith for externally entered SQL statements in the file ajx.php in the component GET Parameter Handle...

9.8CVSS9.9AI score0.00841EPSS
Exploits1References1
OSV
OSV
added 2023/06/23 10:15 a.m.4 views

CVE-2023-3381

A vulnerability classified as problematic was found in SourceCodester Online School Fees System 1.0. Affected by this vulnerability is an unknown functionality of the file /paysystem/datatable.php of the component GET Parameter Handler. The manipulation of the argument doj leads to cross site...

6.1CVSS3.8AI score
Exploits0References3
Rows per page
Query Builder