Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/12/13 3:58 p.m.6 views

CVE-2025-14566

A security flaw has been discovered in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464. The impacted element is an unknown function of the file /Profilers/SProfile/reg.php. Performing a manipulation of the argument USN results in sql injection. It is possible to initia...

9.8CVSS7.2AI score0.0035EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/13 3:58 p.m.7 views

CVE-2025-14565

A vulnerability was identified in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464. The affected element is an unknown function of the file /Profilers/SProfile/login1.php. Such manipulation of the argument Username leads to sql injection. The attack may be performed fro...

9.8CVSS7AI score0.00333EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/12/12 3:32 p.m.29 views

CVE-2025-14565 kidaze CourseSelectionSystem login1.php sql injection

A vulnerability was identified in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464. The affected element is an unknown function of the file /Profilers/SProfile/login1.php. Such manipulation of the argument Username leads to sql injection. The attack may be performed fro...

7.5CVSS0.00333EPSS
Exploits1References5
CVE
CVE
added 2025/09/27 7:2 a.m.13 views

CVE-2025-11052

CVE-2025-11052 affects kidaze CourseSelectionSystem version 1.0/5.php, with the vulnerability located in /Profilers/PriProfile/COUNT3s5.php where manipulating the csslc parameter leads to SQL injection. The issue is exploitable remotely and an exploit has been publicly released. Multiple sources ...

9.8CVSS6.7AI score0.00387EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/09/18 12:2 p.m.11 views

CVE-2025-10665 kidaze CourseSelectionSystem COUNT3s3.php sql injection

A vulnerability was identified in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464. Affected is an unknown function of the file /Profilers/PProfile/COUNT3s3.php. The manipulation of the argument csem leads to sql injection. Remote exploitation of the attack is possible...

6.5CVSS0.00323EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/09/17 3:32 p.m.4 views

CVE-2025-10597 kidaze CourseSelectionSystem COUNT2.php sql injection

A vulnerability was determined in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464. This vulnerability affects unknown code of the file /Profilers/PriProfile/COUNT2.php. This manipulation of the argument cname causes sql injection. The attack may be initiated remotely...

7.5CVSS6.8AI score0.00444EPSS
Exploits1References4
CVE
CVE
added 2025/09/15 8:32 p.m.16 views

CVE-2025-10477

CVE-2025-10477 affects kidaze CourseSelectionSystem. The vulnerability is a SQL injection caused by manipulation of the Branch argument in an unknown function within /Profilers/PriProfile/eligibility.php. It is exploitable remotely, and publicly available exploits exist. The product does not use ...

9.8CVSS6.3AI score0.00302EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder