216 matches found
CVE-2022-28025
Student Grading System v1.0 was discovered to contain a SQL injection vulnerability via /student-grading-system/rms.php?page=schoolyear...
CVE-2022-28025
The CVE-2022-28025 entry applies to Student Grading System v1.0 , with a SQL injection vulnerability exploitable via the parameter in /student-grading-system/rms.php?page=school_year. The public record consistently identifies the flaw as an input handling issue that allows SQL commands to be inje...
CVE-2022-28024
The CVE-2022-28024 entry affects Student Grading System v1.0, with a SQL injection in the web parameter rms.php?page=grade. Root cause: unsanitized input leading to SQLi. Impact (per sources): confidentiality, integrity, and availability are all at risk (P/H). CVSS vectors indicate high/critical ...
CVE-2022-28026
The CVE-2022-28026 entry describes a SQL injection in Student Grading System v1.0, exploitable via /student-grading-system/rms.php?page=student_p&id=. The issue is caused by unsanitized user input in the parameter, enabling unauthorized SQL commands and potential data exposure. CVSS details from ...
CVE-2022-28026
Student Grading System v1.0 was discovered to contain a SQL injection vulnerability via /student-grading-system/rms.php?page=studentp&id=...
Student Grading System SQL注入漏洞
Student Grading System is a student grading system from Carlo Montero's personal developer. v1.0 of Student Grading System is vulnerable to SQL injection, which can be exploited by attackers to execute illegal SQL commands to steal sensitive database data...
Student Grading System SQL注入漏洞
Student Grading System is a student grading system by Carlo Montero Personal Developer. Student Grading System v1.0 has a security vulnerability that can be exploited by attackers via /student-grading-system/rms.php?page=schoolyear...
Student Grading System SQL注入漏洞
Student Grading System is a student grading system from Carlo Montero's personal developer. v1.0 of Student Grading System is vulnerable to SQL injection, which can be exploited by attackers to execute illegal SQL commands to steal sensitive database data...
CVE-2022-27304
Student Grading System v1.0 was discovered to contain a SQL injection vulnerability via the user parameter...
CVE-2022-27304
Student Grading System v1.0 was discovered to contain a SQL injection vulnerability via the user parameter...
CVE-2022-27304
Student Grading System v1.0 was discovered to contain a SQL injection vulnerability via the user parameter...
Sql injection
Student Grading System v1.0 was discovered to contain a SQL injection vulnerability via the user parameter...
CVE-2022-27304
The CVE-2022-27304 entry applies to Student Grading System v1.0 and describes a SQL injection vulnerability in the user parameter. The vulnerability is confirmed across multiple connected sources (e.g., NVD, Red Hat and CVE registries) and is documented as a SQLi issue with the affected product. ...
Student Grading System SQL注入漏洞
Student Grading System is a student grading system by the individual developer Carlo Montero. Student Grading System v1.0 has a security vulnerability that allows an attacker to perform SQL injection via user parameters...
Student Quarterly Grading System Cross-Site Scripting Vulnerability (CNVD-2022-67487)
Student Quarterly Grading System is a quarterly grading system for students by Carlo Montero, a personal developer. version 1.0 of Student Quarterly Grading System is vulnerable to a cross-site scripting vulnerability, which stems from allowing the fullname and username parameters to to execute...
CVE-2021-41658
Cross Site Scripting XSS in Sourcecodester Student Quarterly Grading System by oretnom23, allows attackers to execute arbitrary code via the fullname and username parameters to the users page...
Cross site scripting
Cross Site Scripting XSS in Sourcecodester Student Quarterly Grading System by oretnom23, allows attackers to execute arbitrary code via the fullname and username parameters to the users page...
CVE-2021-41658
CVE-2021-41658 affects the Sourcecodester Student Quarterly Grading System (by oretnom23). The vulnerability is a Cross Site Scripting (XSS) issue exploitable via the fullname and username parameters on the users page, allowing an attacker to execute arbitrary code. The connected records corrobor...
CVE-2021-41658
Cross Site Scripting XSS in Sourcecodester Student Quarterly Grading System by oretnom23, allows attackers to execute arbitrary code via the fullname and username parameters to the users page...
Student Quarterly Grading System 跨站脚本漏洞
Student Quarterly Grading System is a quarterly grading system for students by Carlo Montero, a personal developer. version 1.0 of Student Quarterly Grading System is vulnerable to a cross-site scripting vulnerability, which stems from allowing the fullname and username parameters to to execute...