Lucene search
K

12 matches found

OSV
OSV
added 2025/08/14 6:52 p.m.3 views

MAL-2025-37455 Malicious code in typopro-web-TypoPRO-Rosario (npm)

The package typopro-web-TypoPRO-Rosario was found to contain malicious code...

7.2AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.1 views

Malicious code in typopro-web-TypoPRO-Rosario (npm)

The package typopro-web-TypoPRO-Rosario was found to contain malicious code...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/06 3:26 a.m.10 views

CVE-2021-44427

An unauthenticated SQL Injection vulnerability in Rosario Student Information System aka rosariosis before 8.1.1 allows remote attackers to execute PostgreSQL statements e.g., SELECT, INSERT, UPDATE, and DELETE through /Side.php via the syear parameter...

9.8CVSS8.3AI score0.50641EPSS
Exploits1References3
OSV
OSV
added 2021/12/02 5:48 p.m.16 views

GHSA-WF5P-F5XR-C4JJ SQL Injection in rosariosis

An unauthenticated SQL Injection vulnerability in Rosario Student Information System aka rosariosis before 8.1.1 allows remote attackers to execute PostgreSQL statements e.g., SELECT, INSERT, UPDATE, and DELETE through /Side.php via the syear parameter...

9.8CVSS9.9AI score0.50641EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2021/12/02 5:48 p.m.27 views

SQL Injection in rosariosis

An unauthenticated SQL Injection vulnerability in Rosario Student Information System aka rosariosis before 8.1.1 allows remote attackers to execute PostgreSQL statements e.g., SELECT, INSERT, UPDATE, and DELETE through /Side.php via the syear parameter...

9.8CVSS7.1AI score0.50641EPSS
Exploits1References6Affected Software1
CNVD
CNVD
added 2021/12/01 12:0 a.m.17 views

Rosario Student Information System SQL Injection Vulnerability

The Rosario Student Information System is a free student information system used for school administration, and a SQL injection vulnerability exists in the Rosario Student Information System, which can be exploited to execute Postgre SQL statements via the /Side.php parameter via the syear...

9.8CVSS3.5AI score0.50641EPSS
Exploits1References1
NVD
NVD
added 2021/11/29 10:15 p.m.24 views

CVE-2021-44427

An unauthenticated SQL Injection vulnerability in Rosario Student Information System aka rosariosis before 8.1.1 allows remote attackers to execute PostgreSQL statements e.g., SELECT, INSERT, UPDATE, and DELETE through /Side.php via the syear parameter...

9.8CVSS0.50641EPSS
Exploits1References1
OSV
OSV
added 2021/11/29 10:15 p.m.17 views

CVE-2021-44427

An unauthenticated SQL Injection vulnerability in Rosario Student Information System aka rosariosis before 8.1.1 allows remote attackers to execute PostgreSQL statements e.g., SELECT, INSERT, UPDATE, and DELETE through /Side.php via the syear parameter...

9.8CVSS8.4AI score
Exploits0References1
Prion
Prion
added 2021/11/29 10:15 p.m.16 views

Sql injection

An unauthenticated SQL Injection vulnerability in Rosario Student Information System aka rosariosis before 8.1.1 allows remote attackers to execute PostgreSQL statements e.g., SELECT, INSERT, UPDATE, and DELETE through /Side.php via the syear parameter...

7.5CVSS9.9AI score0.50641EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/11/29 9:34 p.m.24 views

CVE-2021-44427

An unauthenticated SQL Injection vulnerability in Rosario Student Information System aka rosariosis before 8.1.1 allows remote attackers to execute PostgreSQL statements e.g., SELECT, INSERT, UPDATE, and DELETE through /Side.php via the syear parameter...

9.8CVSS10AI score0.50641EPSS
Exploits1References1
CVE
CVE
added 2021/11/29 9:34 p.m.97 views

CVE-2021-44427

CVE-2021-44427 is an unauthenticated SQL injection in Rosario Student Information System (rosariosis) before 8.1.1. The vulnerability allows remote attackers to execute PostgreSQL statements (e.g., SELECT, INSERT, UPDATE, DELETE) via the /Side.php endpoint using the syear parameter. Affected soft...

9.8CVSS9.9AI score0.50641EPSS
In wildExploits1References1Affected Software1
CNNVD
CNNVD
added 2021/11/29 12:0 a.m.5 views

Rosario Student Information System SQL注入漏洞

The Rosario Student Information System is a free student information system used for school administration, and a SQL injection vulnerability exists in the Rosario Student Information System, which can be exploited to execute Postgre SQL statements via the /Side.php parameter via the syear...

9.8CVSS6AI score0.50641EPSS
Exploits1References2
Rows per page
Query Builder