55 matches found
CVE-2025-5979
A vulnerability classified as critical has been found in code-projects School Fees Payment System 1.0. This affects an unknown part of the file /branch.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed t...
CVE-2025-5977
A vulnerability was found in code-projects School Fees Payment System 1.0 and classified as critical. This issue affects some unknown processing of the file /datatable.php. The manipulation of the argument sSortDir0 leads to sql injection. The attack may be initiated remotely. The exploit has bee...
CVE-2025-5971
A vulnerability was found in code-projects School Fees Payment System 1.0. It has been classified as critical. This affects an unknown part of the file /ajx.php. The manipulation of the argument namestartsWith leads to sql injection. It is possible to initiate the attack remotely. The exploit has...
Code-Projects School Fees Payment System 安全漏洞
School Fees Payment System is a tuition payment system. The School Fees Payment System suffers from a SQL injection vulnerability that originates from a lack of validation of externally-entered SQL statements in the parameter namestartsWith in the file /ajx.php. An attacker can exploit this...
Code-Projects School Fees Payment System 注入漏洞
School Fees Payment System is a tuition payment system. The School Fees Payment System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter sSortDir0 in the file /datatable.php. An attacker can exploit this...
CVE-2023-3381
A vulnerability classified as problematic was found in SourceCodester Online School Fees System 1.0. Affected by this vulnerability is an unknown functionality of the file /paysystem/datatable.php of the component GET Parameter Handler. The manipulation of the argument doj leads to cross site...
CVE-2023-3189
A vulnerability, which was classified as problematic, was found in SourceCodester Online School Fees System 1.0. This affects an unknown part of the file /paysystem/branch.php of the component POST Parameter Handler. The manipulation of the argument branch leads to cross site scripting. It is...
CVE-2024-7168
A vulnerability was found in SourceCodester School Fees Payment System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /manageuser.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit...
CVE-2024-7167
A vulnerability was found in SourceCodester School Fees Payment System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /managecourse.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely...
SourceCodester School Fees Payment System 安全漏洞
SourceCodester School Fees Payment System is a school fees payment system. A security vulnerability exists in version 1.0 of the SourceCodester School Fees Payment System due to an SQL injection vulnerability in the username parameter of the /ajax.php?action=login file...
CVE-2023-49984
A cross-site scripting XSS vulnerability in the component /management/settings of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...
School Fees Management System 安全漏洞
School Fees Management System is a tuition management system. A security vulnerability exists in School Fees Management System v1.0, which originates from a cross-site scripting XSS vulnerability in /management/settings...
CVE-2023-49987
A cross-site scripting XSS vulnerability in the component /management/term of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the tname parameter...
School Fees Management System Security Breach
School Fees Management System is a tuition management system. A security vulnerability exists in School Fees Management System v1.0. The vulnerability can be exploited by an attacker to execute arbitrary web script or HTML via a specially crafted payload that injects the tname parameter...
CVE-2023-51800
Cross Site Scripting XSS vulnerability in School Fees Management System v.1.0 allows a remote attacker to execute arbitrary code via a crafted payload to the mainsettings component in the phone, address, bank, accname, accnumber parameters, newclass and cname parameter, addnewparent function in t...
School Fees Management System Security Breach
School Fees Management System is a tuition management system. A security vulnerability exists in School Fees Management System version v.1.0. An attacker could exploit this vulnerability to conduct cross-site scripting attacks...
PT-2023-31443 · Unknown · School Management System
Name of the Vulnerable Software and Affected Versions: School Fees Management System version 1.0 Description: A cross-site scripting XSS issue in the /management/settings component allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...
PT-2023-31442 · Unknown · School Management System
Name of the Vulnerable Software and Affected Versions: School Fees Management System version 1.0 Description: A cross-site scripting XSS issue in the /management/class component allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...
Online School Fees System SQL Injection Vulnerability
Online School Fees System is an online tuition system. A SQL injection vulnerability exists in Online School Fees System v1.0, which originates from a lack of validation of the parameter namestartsWith for externally entered SQL statements in the file ajx.php in the component GET Parameter Handle...
CVE-2023-3381
A vulnerability classified as problematic was found in SourceCodester Online School Fees System 1.0. Affected by this vulnerability is an unknown functionality of the file /paysystem/datatable.php of the component GET Parameter Handler. The manipulation of the argument doj leads to cross site...