Lucene search
K

8 matches found

NVD
NVD
added 6 days ago15 views

CVE-2026-13488

A security flaw has been discovered in SourceCodester Class and Exam Timetabling System 1.0/7.php. Affected by this vulnerability is an unknown functionality of the file /preview7.php. The manipulation of the argument courseyearsection results in sql injection. The attack may be launched remotely...

7.5CVSS0.00269EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 6 days ago9 views

CVE-2026-13488

A security flaw has been discovered in SourceCodester Class and Exam Timetabling System 1.0/7.php. Affected by this vulnerability is an unknown functionality of the file /preview7.php. The manipulation of the argument courseyearsection results in sql injection. The attack may be launched remotely...

7.5CVSS6.9AI score0.00269EPSS
Exploits0References6Affected Software1
CVE
CVE
added 6 days ago14 views

CVE-2026-13488

SourceCodester Class and Exam Timetabling System 1.0/7.php is affected. The vulnerability is an SQL injection in the /preview7.php file triggered by manipulating the course_year_section parameter, allowing remote exploitation. Public exploit code exists. The CVSS information indicates a network, ...

7.5CVSS6.9AI score0.00269EPSS
Exploits0References6
CNVD
CNVD
added 2025/12/18 12:0 a.m.3 views

Class and Exam Timetable Management /preview7.php File SQL Injection Vulnerability

Class and Exam Timetable Management is a course and exam timetable management system. Class and Exam Timetable Management suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter courseyearsection/semester in the file...

9.8CVSS8AI score0.0035EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/12 9:16 p.m.5 views

CVE-2025-14537

A weakness has been identified in code-projects Class and Exam Timetable Management 1.0. Affected by this issue is some unknown functionality of the file /preview7.php. This manipulation of the argument courseyearsection/semester causes sql injection. Remote exploitation of the attack is possible...

9.8CVSS6.9AI score0.0035EPSS
Exploits1References1
CVE
CVE
added 2025/12/11 8:32 p.m.9 views

CVE-2025-14537

Concrete details from connected documents show a SQL injection vulnerability in code-projects Class and Exam Timetable Management 1.0, specifically in the /preview7.php file where the parameter course_year_section/semester is not validated. This allows remote exploitation and may enable retrieval...

9.8CVSS6.5AI score0.0035EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2025/12/11 8:32 p.m.20 views

CVE-2025-14537 code-projects Class and Exam Timetable Management preview7.php sql injection

A weakness has been identified in code-projects Class and Exam Timetable Management 1.0. Affected by this issue is some unknown functionality of the file /preview7.php. This manipulation of the argument courseyearsection/semester causes sql injection. Remote exploitation of the attack is possible...

7.5CVSS0.0035EPSS
Exploits1References7
CNNVD
CNNVD
added 2025/12/11 12:0 a.m.3 views

Code-Projects Class and Exam Timetable Management SQL注入漏洞

Class and Exam Timetable Management is a course and exam timetable management system. Class and Exam Timetable Management suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter courseyearsection/semester in the file...

9.8CVSS8AI score0.0035EPSS
Exploits1References7
Rows per page
Query Builder