Lucene search
K

45 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:34 a.m.8 views

CVE-2024-41246

An Incorrect Access Control vulnerability was found in /smsa/admindashboard.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view administrator dashboard...

5.3CVSS7.1AI score0.00538EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:34 a.m.6 views

CVE-2024-41252

An Incorrect Access Control vulnerability was found in /smsa/adminstudentregisterapproval.php and /smsa/adminstudentregisterapprovalsubmit.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view and approve student registration...

6.5CVSS7.1AI score0.0039EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:34 a.m.7 views

CVE-2024-41238

A SQL injection vulnerability in /smsa/studentlogin.php in Kashipara Responsive School Management System v1.0 allows an attacker to execute arbitrary SQL commands via the "username" parameter...

5.3CVSS8.6AI score0.00383EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:34 a.m.5 views

CVE-2024-41247

An Incorrect Access Control vulnerability was found in /smsa/addclass.php and /smsa/addclasssubmit.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to add a new class entry...

9.1CVSS7.2AI score0.00434EPSS
Exploits1References1
EUVD
EUVD
added 2025/11/17 6:30 p.m.5 views

EUVD-2024-55086

kashipara School Management System 1.0 is vulnerable to Cross Site Scripting XSS via the formuser and formpassword parameters in /adminLogin.php...

6.1CVSS5.7AI score0.00196EPSS
Exploits1References3
NVD
NVD
added 2025/11/17 5:15 p.m.8 views

CVE-2024-46334

kashipara School Management System 1.0 is vulnerable to Cross Site Scripting XSS via the formuser and formpassword parameters in /adminLogin.php...

6.1CVSS0.00196EPSS
Exploits1References2
NVD
NVD
added 2025/11/17 5:15 p.m.5 views

CVE-2024-46336

kashipara School Management System 1.0 is vulnerable to Cross Site Scripting XSS via /clientuser/feedback.php...

6.1CVSS0.00196EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/11/17 12:0 a.m.9 views

CVE-2024-46336

kashipara School Management System 1.0 is vulnerable to Cross Site Scripting XSS via /clientuser/feedback.php...

0.00196EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/11/17 12:0 a.m.8 views

PT-2025-47171

Name of the Vulnerable Software and Affected Versions kashipara School Management System version 1.0 Description The software is susceptible to Cross Site Scripting XSS attacks. The issue is located in the /client user/feedback.php endpoint. An attacker could potentially inject malicious scripts...

6.1CVSS5.9AI score0.00196EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/11/17 12:0 a.m.3 views

CVE-2024-46336

kashipara School Management System 1.0 is vulnerable to Cross Site Scripting XSS via /clientuser/feedback.php...

5.8AI score0.00196EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/11/17 12:0 a.m.2 views

CVE-2024-46334

kashipara School Management System 1.0 is vulnerable to Cross Site Scripting XSS via the formuser and formpassword parameters in /adminLogin.php...

5.8AI score0.00196EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/11/17 12:0 a.m.10 views

CVE-2024-46334

kashipara School Management System 1.0 is vulnerable to Cross Site Scripting XSS via the formuser and formpassword parameters in /adminLogin.php...

0.00196EPSS
Exploits1References2
CVE
CVE
added 2025/11/17 12:0 a.m.10 views

CVE-2024-46334

CVE-2024-46334 affects Kashipara School Management System 1.0. The vulnerability is a Cross Site Scripting (XSS) flaw exploitable through the parameters formuser and formpassword in /adminLogin.php . The root cause is unvalidated/sanitized user input in this login endpoint, enabling scripts to be...

6.1CVSS5.8AI score0.00196EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2025/11/17 12:0 a.m.5 views

EUVD-2024-55094

kashipara School Management System 1.0 is vulnerable to Cross Site Scripting XSS via /clientuser/feedback.php...

6.1CVSS5.7AI score0.00196EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/11/17 12:0 a.m.10 views

PT-2025-47170

Name of the Vulnerable Software and Affected Versions kashipara School Management System version 1.0 Description The software is susceptible to Cross Site Scripting XSS. The issue affects the /adminLogin.php endpoint, specifically through the formuser and formpassword parameters. Successful...

6.1CVSS6.1AI score0.00196EPSS
Exploits1References5
CVE
CVE
added 2025/11/17 12:0 a.m.13 views

CVE-2024-46336

CVE-2024-46336 affects Kashipara School Management System 1.0. The vulnerability is a Cross Site Scripting (XSS) flaw in /client_user/feedback.php caused by an unvalidated parameter. The issue is documented across Red Hat, NVD, CNNVD and CVE listings with a CVSS v3.1 base score of 6.1 (Medium). N...

6.1CVSS5.8AI score0.00196EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-38988

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00448EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:28 a.m.6 views

CVE-2024-41236

A SQL injection vulnerability in /smsa/adminlogin.php in Kashipara Responsive School Management System v3.2.0 allows an attacker to execute arbitrary SQL commands via the "username" parameter of the Admin Login Page...

7.2CVSS8.6AI score0.00375EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:24 a.m.5 views

CVE-2024-41250

An Incorrect Access Control vulnerability was found in /smsa/viewstudents.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view STUDENT details...

5.3CVSS7.1AI score0.00485EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 8:49 a.m.6 views

CVE-2024-41245

An Incorrect Access Control vulnerability was found in /smsa/viewteachers.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view TEACHER details...

7.5CVSS7.1AI score0.00548EPSS
Exploits1References1
Rows per page
Query Builder