Lucene search
K

5 matches found

NVD
NVD
added 2023/10/25 6:17 p.m.26 views

CVE-2023-27375

Missing authentication in the StudentPopupDetailsContactDetails method in IDAttend’s IDWeb application 3.1.052 and earlier allows extraction of sensitive student data by unauthenticated attackers...

7.5CVSS7.7AI score0.00695EPSS
Exploits0References1
Prion
Prion
added 2023/10/25 6:17 p.m.23 views

Sql injection

Unauthenticated SQL injection in the GetRoomChanges method in IDAttend’s IDWeb application 3.1.052 and earlier allows extraction or modification of all data by unauthenticated attackers...

6.4CVSS9.6AI score0.00759EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/10/25 6:17 p.m.16 views

Authentication flaw

Missing authentication in the StudentPopupDetailsTimetable method in IDAttend’s IDWeb application 3.1.052 and earlier allows extraction sensitive student data by unauthenticated attackers...

5CVSS7.7AI score0.00695EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/10/25 6:17 p.m.16 views

Sql injection

Unauthenticated SQL injection in the StudentPopupDetailsTimetable method in IDAttend’s IDWeb application 3.1.052 and earlier allows extraction or modification of all data by unauthenticated attackers...

6.4CVSS9.6AI score0.00759EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/10/25 6:17 p.m.15 views

Sql injection

Unauthenticated SQL injection in the GetStudentInconsistencies method in IDAttend’s IDWeb application 3.1.052 and earlier allows extraction or modification of all data by unauthenticated attackers...

6.4CVSS9.6AI score0.00556EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder