Lucene search
K

20 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:11 a.m.9 views

CVE-2024-54926

A SQL Injection vulnerability was found in /searchclass.php of kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL commands to get unauthorized database access via the schoolyear parameter...

9.8CVSS8.9AI score0.00566EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:50 a.m.8 views

CVE-2024-54921

A SQL Injection was found in /studentsignup.php in kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL commands to get unauthorized database access via the username, firstname, lastname, and classid parameters...

9.8CVSS8.9AI score0.00583EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:50 a.m.9 views

CVE-2024-54928

kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/deleteteacher.php,...

7.2CVSS7.3AI score0.00475EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:50 a.m.12 views

CVE-2024-54934

Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/deleteclass.php...

9.8CVSS9.8AI score0.00496EPSS
Exploits1References1
NVD
NVD
added 2024/12/09 7:15 p.m.25 views

CVE-2024-54934

Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/deleteclass.php...

9.8CVSS0.00496EPSS
Exploits1References1
NVD
NVD
added 2024/12/09 7:15 p.m.28 views

CVE-2024-54925

A SQL Injection was found in /removesentmessage.php in kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL commands to get unauthorized database access via the id parameter...

9.8CVSS0.00583EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/12/09 12:0 a.m.21 views

CVE-2024-54932

Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/deletedepartment.php...

0.00496EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/12/09 12:0 a.m.11 views

CVE-2024-54930

Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/deletestudent.php...

8AI score0.00479EPSS
Exploits1References1
CVE
CVE
added 2024/12/09 12:0 a.m.69 views

CVE-2024-54921

CVE-2024-54921 affects Kashipara E-learning Management System v1.0, with a SQL injection in /student_signup.php that allows remote attackers to execute arbitrary SQL through the username, firstname, lastname, and class_id parameters, leading to unauthorized database access. The CVSS v3.1 data ind...

9.8CVSS9.1AI score0.00583EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/12/09 12:0 a.m.19 views

CVE-2024-54925

A SQL Injection was found in /removesentmessage.php in kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL commands to get unauthorized database access via the id parameter...

0.00583EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/12/09 12:0 a.m.4 views

Kashipara E-learning Management System 安全漏洞

Kashipara E-learning Management System is a learning management system from Kashipara. A security vulnerability exists in Kashipara E-learning Management System v1.0. An attacker can exploit this vulnerability to execute arbitrary Java script via the filename parameter...

5.4CVSS7.3AI score0.00306EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/12/09 12:0 a.m.13 views

CVE-2024-54926

A SQL Injection vulnerability was found in /searchclass.php of kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL commands to get unauthorized database access via the schoolyear parameter...

0.00566EPSS
Exploits1References1
CVE
CVE
added 2024/12/09 12:0 a.m.58 views

CVE-2024-54928

Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_teacher.php. Root cause is improper input handling enabling SQL injection; CVSS v3.1 base score 7.2 (HIGH) with impact to confidentiality, integrity, and availability. Exploitation status is not detailed i...

7.2CVSS8.3AI score0.00475EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2024/12/09 12:0 a.m.64 views

CVE-2024-54931

CVE-2024-54931 relates to a SQL injection in Kashipara E-learning Management System v1.0, exposed via the /admin/delete_event.php endpoint. The vulnerability stems from unsanitized input to the id parameter, allowing remote attackers to execute arbitrary SQL commands and gain unauthorized databas...

9.8CVSS9.1AI score0.00583EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/12/09 12:0 a.m.20 views

CVE-2024-54930

Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/deletestudent.php...

0.00479EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/12/09 12:0 a.m.19 views

CVE-2024-54931

A SQL Injection was found in /admin/deleteevent.php in kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL commands to get unauthorized database access via the id parameter...

0.00583EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/12/09 12:0 a.m.4 views

Kashipara E-learning Management System 安全漏洞

Kashipara E-learning Management System is a learning management system from Kashipara. A security vulnerability exists in Kashipara E-learning Management System v1.0. An attacker can exploit this vulnerability to execute arbitrary scripts via the mymessage parameter...

5.4CVSS7.2AI score0.0038EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/12/09 12:0 a.m.4 views

Kashipara E-learning Management System 安全漏洞

Kashipara E-learning Management System is a learning management system from Kashipara. A security vulnerability exists in Kashipara E-learning Management System v1.0. An attacker can exploit the vulnerability to access the database by executing arbitrary SQL commands via the title and content...

9.8CVSS7.6AI score0.00583EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/12/09 12:0 a.m.5 views

Kashipara E-learning Management System 安全漏洞

Kashipara E-learning Management System is a learning management system from Kashipara. A security vulnerability exists in Kashipara E-learning Management System v1.0. An attacker can exploit the vulnerability to access sensitive files and directories via /admin/assets...

5.3CVSS6.7AI score0.00461EPSS
Exploits1References1
OSV
OSV
added 2024/11/14 6:15 p.m.4 views

CVE-2024-50826

A SQL Injection vulnerability was found in /admin/addcontent.php in kashipara E-learning Management System Project 1.0 via the title and content parameters...

7.2CVSS5.8AI score0.00379EPSS
Exploits1References1
Rows per page
Query Builder