Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2026/04/07 5:7 p.m.4 views

CVE-2026-5668

A flaw has been found in Cyber-III Student-Management-System up to 1a938fa61e9f735078e9b291d2e6215b4942af3f. This affects an unknown part of the file /admin/Add%20notice/add%20notice.php. This manipulation of the argument $SERVER'PHPSELF' causes cross site scripting. It is possible to initiate th...

4.8CVSS4.5AI score0.00206EPSS
Exploits0References1
NVD
NVD
added 2026/04/06 5:17 p.m.5 views

CVE-2026-5668

A flaw has been found in Cyber-III Student-Management-System up to 1a938fa61e9f735078e9b291d2e6215b4942af3f. This affects an unknown part of the file /admin/Add%20notice/add%20notice.php. This manipulation of the argument $SERVER'PHPSELF' causes cross site scripting. It is possible to initiate th...

4.8CVSS0.00206EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/06 4:15 p.m.20 views

CVE-2026-5668 Cyber-III Student-Management-System add%20notice.php cross site scripting

A flaw has been found in Cyber-III Student-Management-System up to 1a938fa61e9f735078e9b291d2e6215b4942af3f. This affects an unknown part of the file /admin/Add%20notice/add%20notice.php. This manipulation of the argument $SERVER'PHPSELF' causes cross site scripting. It is possible to initiate th...

4.8CVSS0.00206EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/06 4:15 p.m.3 views

CVE-2026-5668 Cyber-III Student-Management-System add%20notice.php cross site scripting

A flaw has been found in Cyber-III Student-Management-System up to 1a938fa61e9f735078e9b291d2e6215b4942af3f. This affects an unknown part of the file /admin/Add%20notice/add%20notice.php. This manipulation of the argument $SERVER'PHPSELF' causes cross site scripting. It is possible to initiate th...

4.8CVSS4.5AI score0.00206EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/06 12:0 a.m.9 views

Student-Management-System 代码注入漏洞

Student-Management-System is an open-source student information management system developed by Cyber-III. Versions of Student-Management-System 1a938fa61e9f735078e9b291d2e6215b4942af3f and earlier have a code injection vulnerability. This vulnerability stems from incorrect handling of the...

4.8CVSS5.7AI score0.00206EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/04/06 12:0 a.m.10 views

PT-2026-30678

A flaw has been found in Cyber-III Student-Management-System up to 1a938fa61e9f735078e9b291d2e6215b4942af3f. This affects an unknown part of the file /admin/Add%20notice/add%20notice.php. This manipulation of the argument $ SERVER'PHP SELF' causes cross site scripting. It is possible to initiate...

4.8CVSS4.5AI score0.00206EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/08/21 12:0 a.m.7 views

PT-2025-34233 · Sourcecodester · Online Bank Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Bank Management System version 1.0 Description: A security vulnerability has been detected. The affected element is an unknown function of the file /bank/mnotice.php. Manipulation of the ID argument leads to SQL injectio...

9.8CVSS7.5AI score0.00387EPSS
Exploits1References10
CNNVD
CNNVD
added 2025/04/08 12:0 a.m.4 views

EsafeNet CDG 安全漏洞

EsafeNet CDG is a document security management system from EsafeNet. A security vulnerability exists in EsafeNet CDG 5.6.3.154.20520250114, which stems from improper handling of the ID parameter in updateNotice.jsp, which could lead to SQL injection...

9.8CVSS7.8AI score0.0057EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2020/06/19 12:0 a.m.3 views

PT-2020-14027 · Dolibarr · Dolibarr

Name of the Vulnerable Software and Affected Versions: Dolibarr versions 11.0.4 and below Dolibarr version 11.0.3 Description: A reflected cross-site scripting XSS issue allows remote attackers to inject arbitrary web script or HTML into "public/notice.php" related to transphrase and transkey...

6.1CVSS5.8AI score0.0081EPSS
Exploits0References6
CNVD
CNVD
added 2018/11/27 12:0 a.m.2 views

TOTOLINK A3002RU Cross-Site Scripting Vulnerability

TOTOLINK A3002RU is a wireless router product from Gion Electronics TOTOLINK. A cross-site scripting vulnerability exists in the noticegen.htm page of the TOTOLINK A3002RU version 1.0.8. A remote attacker can exploit this vulnerability by modifying the "Input your notice URL" field to execute...

6.1CVSS6.3AI score0.00692EPSS
Exploits1References1
CISA
CISA
added 2016/11/21 12:0 a.m.12 views

Vulnerabilities Identified in Network Time Protocol Daemon (ntpd)

The Network Time Foundation's NTP Project has released version ntp-4.2.8p9 to address multiple vulnerabilities in ntpd. Exploitation of some of these vulnerabilities may allow a remote attacker to cause a denial-of-service condition. US-CERT encourages users and administrators to review...

7AI score
Exploits0References2
Rows per page
Query Builder