Lucene search
K

5 matches found

CNVD
CNVD
added 2025/12/31 12:0 a.m.5 views

Student File Management System download.php File SQL Injection Vulnerability

Student File Management System is a student file management system. A SQL injection vulnerability exists in Student File Management System due to mishandling of the istoreid parameter by an unknown function module in the /download.php file. An attacker can use this vulnerability to obtain or tamp...

8.8CVSS6.8AI score0.00301EPSS
Exploits1References1
OSV
OSV
added 2025/12/29 9:15 p.m.5 views

CVE-2025-15205

A vulnerability was identified in code-projects Student File Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /download.php. The manipulation of the argument istoreid leads to sql injection. The attack can be initiated remotely. The exploit is publicly...

8.8CVSS5.8AI score0.00301EPSS
Exploits1References5
CVE
CVE
added 2025/12/29 9:2 p.m.15 views

CVE-2025-15205

CVE-2025-15205 affects code-projects’ Student File Management System 1.0. The vulnerability is a SQL injection in the file /download.php triggered by manipulating the istore_id parameter, allowing remote exploitation and potentially exposing or tampering with database information. Public exploit ...

8.8CVSS6.5AI score0.00301EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2025/12/29 9:2 p.m.23 views

CVE-2025-15205 code-projects Student File Management System download.php sql injection

A vulnerability was identified in code-projects Student File Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /download.php. The manipulation of the argument istoreid leads to sql injection. The attack can be initiated remotely. The exploit is publicly...

6.5CVSS0.00301EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/12/29 12:0 a.m.5 views

PT-2025-53793

Name of the Vulnerable Software and Affected Versions code-projects Student File Management System version 1.0 Description A flaw exists in Student File Management System version 1.0 that allows for remote code execution. The issue is related to SQL injection within the /download.php file,...

8.8CVSS8.3AI score0.00301EPSS
Exploits1References10
Rows per page
Query Builder