Lucene search
K

15 matches found

redhatcve
redhatcve
added 2026/01/09 9:35 a.m.21 views

CVE-2024-34919

An arbitrary file upload vulnerability in the component \modstudent\controller.php of Pisay Online E-Learning System using PHP/MySQL v1.0 allows attackers to execute arbitrary code via uploading a crafted file...

9.8CVSS7.8AI score0.00852EPSS
Exploits0References1
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-7102

Malware in sbrugna...

9.8CVSS9.2AI score0.05392EPSS
Exploits1References3
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-35108

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00852EPSS
Exploits0References1
nvd
nvd
added 2024/05/17 2:15 p.m.22 views

CVE-2024-34919

An arbitrary file upload vulnerability in the component \modstudent\controller.php of Pisay Online E-Learning System using PHP/MySQL v1.0 allows attackers to execute arbitrary code via uploading a crafted file...

9.8CVSS7.4AI score0.00852EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/05/17 1:43 p.m.17 views

CVE-2024-34919

An arbitrary file upload vulnerability in the component \modstudent\controller.php of Pisay Online E-Learning System using PHP/MySQL v1.0 allows attackers to execute arbitrary code via uploading a crafted file...

7.8AI score0.00852EPSS
Exploits0References1
cve
cve
added 2024/05/17 1:43 p.m.65 views

CVE-2024-34919

The CVE-2024-34919 entry describes an arbitrary file upload in Pisay Online E-Learning System v1.0, specifically the modstudent/controller.php component, enabling attackers to execute arbitrary code via crafted uploads. The vulnerability is associated with PHP/MySQL-based Pisay Online E-Learning ...

9.8CVSS7.7AI score0.00852EPSS
Exploits0References1
cvelist
cvelist
added 2024/05/17 1:43 p.m.45 views

CVE-2024-34919

An arbitrary file upload vulnerability in the component \modstudent\controller.php of Pisay Online E-Learning System using PHP/MySQL v1.0 allows attackers to execute arbitrary code via uploading a crafted file...

7.4AI score0.00852EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2024/05/17 12:0 a.m.6 views

PT-2024-26248 · Unknown · Pisay Online E-Learning System

Name of the Vulnerable Software and Affected Versions: Pisay Online E-Learning System version 1.0 Description: The issue concerns an arbitrary file upload vulnerability in the modstudentcontroller.php component. This allows attackers to execute arbitrary code by uploading a crafted file. No...

9.8CVSS7.7AI score0.00852EPSS
Exploits0References2
osv
osv
added 2024/04/30 11:15 p.m.4 views

CVE-2024-4349

A vulnerability has been found in SourceCodester Pisay Online E-Learning System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /lesson/controller.php. The manipulation of the argument file leads to unrestricted upload. The attack can be...

7.3CVSS5.5AI score0.01035EPSS
Exploits1References4
vulnrichment
vulnrichment
added 2024/04/30 11:0 p.m.11 views

CVE-2024-4349 SourceCodester Pisay Online E-Learning System controller.php unrestricted upload

A vulnerability has been found in SourceCodester Pisay Online E-Learning System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /lesson/controller.php. The manipulation of the argument file leads to unrestricted upload. The attack can be...

7.5CVSS6.9AI score0.01035EPSS
Exploits1References4
cve
cve
added 2024/04/30 11:0 p.m.83 views

CVE-2024-4349

CVE-2024-4349 affects SourceCodester Pisay Online E-Learning System 1.0. The vulnerability lies in the /lesson/controller.php file where manipulating the file parameter leads to unrestricted uploads. It can be exploited remotely, and publicly disclosed exploit information exists (VDB-262489). Rem...

7.5CVSS6.8AI score0.01035EPSS
Exploits1References4Affected Software1
cnvd
cnvd
added 2020/06/23 12:0 a.m.3 views

Sourcecodester Pisay Online E-Learning System SQL Injection Vulnerability

Sourcecodester Pisay Online E-Learning System is an online e-learning system based on PHP and MySQL. A SQL injection vulnerability exists in Sourcecodester Pisay Online E-Learning System version 1.0. A remote attacker can exploit this vulnerability via the 'useremail', 'userpass', and 'id'...

9.8CVSS8.6AI score0.05392EPSS
Exploits1References1
nvd
nvd
added 2020/06/22 6:15 p.m.15 views

CVE-2020-14972

Multiple SQL injection vulnerabilities in Sourcecodester Pisay Online E-Learning System 1.0 allow remote unauthenticated attackers to bypass authentication and achieve Remote Code Execution RCE via the useremail, userpass, and id parameters on the admin login-portal and the edit-lessons webpages...

9.8CVSS0.05392EPSS
Exploits1References2
osv
osv
added 2020/06/22 6:15 p.m.3 views

CVE-2020-14972

Multiple SQL injection vulnerabilities in Sourcecodester Pisay Online E-Learning System 1.0 allow remote unauthenticated attackers to bypass authentication and achieve Remote Code Execution RCE via the useremail, userpass, and id parameters on the admin login-portal and the edit-lessons webpages...

9.8CVSS7.5AI score0.05392EPSS
Exploits1References2
exploitdb
exploitdb
added 2020/05/07 12:0 a.m.221 views

Pisay Online E-Learning System 1.0 - Remote Code Execution

Exploit Title: Pisay Online E-Learning System 1.0 - Remote Code Execution Exploit Author: Bobby Cooke Date: 2020-05-05 Vendor Homepage: https://www.sourcecodester.com/php/14192/pisay-online-e-learning-system-using-phpmysql.html Software Link:...

7.4AI score
Exploits0
Rows per page
Query Builder