Lucene search
K

210 matches found

RedhatCVE
RedhatCVE
added 2025/02/13 11:6 p.m.15 views

CVE-2024-35349

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /admin/category/viewcategory.php. Manipulating the argument id can result in SQL injection...

9.8CVSS7.7AI score0.00538EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2024/06/07 12:0 a.m.8 views

Fedora: Security Advisory for qt6-qtquick3dphysics (FEDORA-2024-bfb8617ba3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS10AI score0.0097EPSS
Exploits0References2
OSV
OSV
added 2024/05/30 5:15 p.m.5 views

CVE-2024-35359

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=viewitem. Manipulating the argument id can result in SQL injection...

9.8CVSS5.8AI score0.00429EPSS
Exploits1References1
NVD
NVD
added 2024/05/30 5:15 p.m.20 views

CVE-2024-35359

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=viewitem. Manipulating the argument id can result in SQL injection...

9.8CVSS7.7AI score0.00429EPSS
Exploits1References1
NVD
NVD
added 2024/05/30 5:15 p.m.16 views

CVE-2024-35349

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /admin/category/viewcategory.php. Manipulating the argument id can result in SQL injection...

9.8CVSS7.7AI score0.00538EPSS
Exploits1References1
OSV
OSV
added 2024/05/30 5:15 p.m.2 views

CVE-2024-35349

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /admin/category/viewcategory.php. Manipulating the argument id can result in SQL injection...

9.8CVSS5.8AI score0.00538EPSS
Exploits1References1
OSV
OSV
added 2024/05/30 5:15 p.m.5 views

CVE-2024-35352

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. This vulnerability impacts unidentified code within the file /classes/Users.php?f=save. Manipulating the parameter middlename results in cross-site scripting...

6.1CVSS5.2AI score0.00316EPSS
Exploits1References1
OSV
OSV
added 2024/05/30 5:15 p.m.2 views

CVE-2024-35350

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /admin/?page=borrow/viewborrow. Manipulating the argument id can result in SQL injection...

9.8CVSS5.8AI score0.00531EPSS
Exploits1References1
OSV
OSV
added 2024/05/30 5:15 p.m.3 views

CVE-2024-35351

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. This vulnerability impacts unidentified code within the file /classes/SystemSettings.php?f=updatesettings. Manipulating the parameter name results in cross-site scripting...

5.4CVSS5.2AI score0.00261EPSS
Exploits0References1
NVD
NVD
added 2024/05/30 5:15 p.m.14 views

CVE-2024-35351

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. This vulnerability impacts unidentified code within the file /classes/SystemSettings.php?f=updatesettings. Manipulating the parameter name results in cross-site scripting...

5.4CVSS6.4AI score0.00261EPSS
Exploits0References1
NVD
NVD
added 2024/05/30 5:15 p.m.17 views

CVE-2024-35353

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Users.php?f=save. Manipulating the argument id can result in improper authorization...

9.8CVSS6.8AI score0.00555EPSS
Exploits1References1
NVD
NVD
added 2024/05/30 5:15 p.m.12 views

CVE-2024-35352

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. This vulnerability impacts unidentified code within the file /classes/Users.php?f=save. Manipulating the parameter middlename results in cross-site scripting...

6.1CVSS6.4AI score0.00316EPSS
Exploits1References1
NVD
NVD
added 2024/05/30 5:15 p.m.15 views

CVE-2024-35350

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /admin/?page=borrow/viewborrow. Manipulating the argument id can result in SQL injection...

9.8CVSS7.7AI score0.00531EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/05/30 4:20 p.m.22 views

CVE-2024-35349

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /admin/category/viewcategory.php. Manipulating the argument id can result in SQL injection...

7.7AI score0.00538EPSS
Exploits1References1
CVE
CVE
added 2024/05/30 4:20 p.m.97 views

CVE-2024-35349

CVE-2024-35349 affects Diño Physics School Assistant 2.3. The vulnerability arises from unvalidated handling of the id argument in /admin/category/view_category.php, enabling SQL injection via that parameter. The CVSS 3.1 score is 9.8 (CRITICAL) with Network attack vector, no privileges required,...

9.8CVSS8.1AI score0.00538EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2024/05/30 4:19 p.m.105 views

CVE-2024-35350

The CVE-2024-35350 entry concerns Diño Physics School Assistant v2.3. A SQL injection vulnerability exists in the code handling the endpoint /admin/?page=borrow/view_borrow, triggered by manipulating the id parameter. Affected component is the admin borrow viewing logic; root cause is unvalidated...

9.8CVSS8.1AI score0.00531EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/05/30 4:19 p.m.25 views

CVE-2024-35350

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /admin/?page=borrow/viewborrow. Manipulating the argument id can result in SQL injection...

7.7AI score0.00531EPSS
Exploits1References1
CVE
CVE
added 2024/05/30 4:18 p.m.93 views

CVE-2024-35351

CVE-2024-35351 affects Diño Physics School Assistant version 2.3, with a cross-site scripting vulnerability in the code path handling /classes/SystemSettings.php?f=update_settings. The root cause is unvalidated manipulation of the parameter name that can lead to stored/reflective XSS depending on...

5.4CVSS6.7AI score0.00261EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/05/30 4:18 p.m.17 views

CVE-2024-35351

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. This vulnerability impacts unidentified code within the file /classes/SystemSettings.php?f=updatesettings. Manipulating the parameter name results in cross-site scripting...

6.4AI score0.00261EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/30 4:16 p.m.18 views

CVE-2024-35359

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=viewitem. Manipulating the argument id can result in SQL injection...

9.9AI score0.00429EPSS
Exploits1References1
Rows per page
Query Builder