Lucene search
K

47 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:37 p.m.3 views

CVE-2023-49986

A cross-site scripting XSS vulnerability in the component /admin/parent of School Fees Management System 1.0 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...

4.7CVSS5.8AI score0.00471EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:36 p.m.7 views

CVE-2023-49981

A directory listing vulnerability in School Fees Management System v1.0 allows attackers to list directories and sensitive files within the application without requiring authorization...

7.5CVSS6.7AI score0.00745EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:35 p.m.7 views

CVE-2023-49985

A cross-site scripting XSS vulnerability in the component /management/class of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cname parameter...

6.5CVSS5.8AI score0.00468EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:35 p.m.2 views

CVE-2023-49987

A cross-site scripting XSS vulnerability in the component /management/term of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the tname parameter...

5.4CVSS5.8AI score0.00431EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:0 a.m.6 views

CVE-2023-51800

Cross Site Scripting XSS vulnerability in School Fees Management System v.1.0 allows a remote attacker to execute arbitrary code via a crafted payload to the mainsettings component in the phone, address, bank, accname, accnumber parameters, newclass and cname parameter, addnewparent function in t...

6.1CVSS6.4AI score0.00628EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 4:28 a.m.11 views

CVE-2023-49983

A cross-site scripting XSS vulnerability in the component /management/class of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...

6.8CVSS5.8AI score0.00574EPSS
Exploits1
OSV
OSV
added 2024/03/21 2:49 a.m.4 views

CVE-2023-49981

A directory listing vulnerability in School Fees Management System v1.0 allows attackers to list directories and sensitive files within the application without requiring authorization...

7.5CVSS5.8AI score0.00745EPSS
Exploits1References2
OSV
OSV
added 2024/03/21 2:49 a.m.5 views

CVE-2023-49983

A cross-site scripting XSS vulnerability in the component /management/class of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...

6.8CVSS5.9AI score0.00574EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2024/03/21 2:49 a.m.4 views

CVE-2023-49983

A cross-site scripting XSS vulnerability in the component /management/class of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...

6.8CVSS5.9AI score0.00574EPSS
Exploits1References3
OSV
OSV
added 2024/03/21 2:49 a.m.4 views

CVE-2023-49985

A cross-site scripting XSS vulnerability in the component /management/class of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cname parameter...

6.5CVSS5.9AI score0.00468EPSS
Exploits1References2
NVD
NVD
added 2024/03/21 2:49 a.m.12 views

CVE-2023-49985

A cross-site scripting XSS vulnerability in the component /management/class of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cname parameter...

6.5CVSS5.6AI score0.00468EPSS
Exploits1References2
OSV
OSV
added 2024/03/21 2:49 a.m.4 views

CVE-2023-49984

A cross-site scripting XSS vulnerability in the component /management/settings of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...

6.1CVSS5.9AI score0.00483EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/03/21 12:0 a.m.3 views

School Fees Management System 安全漏洞

School Fees Management System is a tuition management system. A security vulnerability exists in School Fees Management System version v1.0 that originates from a broken access control in /admin/management/users...

8.8CVSS6.8AI score0.00842EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/03/21 12:0 a.m.3 views

School Fees Management System 安全漏洞

School Fees Management System is a tuition management system. A security vulnerability exists in School Fees Management System v1.0, which originates from a cross-site scripting XSS vulnerability in /management/class...

6.8CVSS5.8AI score0.00574EPSS
Exploits1References3
Prion
Prion
added 2024/03/15 12:17 a.m.46 views

Authorization

A directory listing vulnerability in School Fees Management System v1.0 allows attackers to list directories and sensitive files within the application without requiring authorization...

7.2AI score0.00745EPSS
Exploits1References2
Prion
Prion
added 2024/03/15 12:17 a.m.47 views

Improper access control

Broken access control in the component /admin/management/users of School Fees Management System v1.0 allows attackers to escalate privileges and perform Administrative actions, including adding and deleting user accounts...

7.6AI score0.00842EPSS
Exploits1References2
Prion
Prion
added 2024/03/15 12:17 a.m.44 views

Cross site scripting

A cross-site scripting XSS vulnerability in the component /management/settings of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...

6.1AI score0.00483EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2024/03/07 1:15 a.m.3 views

CVE-2023-49986

A cross-site scripting XSS vulnerability in the component /admin/parent of School Fees Management System 1.0 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...

4.7CVSS5.9AI score0.00471EPSS
Exploits1References3
NVD
NVD
added 2024/03/07 1:15 a.m.9 views

CVE-2023-49987

A cross-site scripting XSS vulnerability in the component /management/term of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the tname parameter...

5.4CVSS5.6AI score0.00431EPSS
Exploits1References2
OSV
OSV
added 2024/03/07 1:15 a.m.4 views

CVE-2023-49986

A cross-site scripting XSS vulnerability in the component /admin/parent of School Fees Management System 1.0 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...

4.7CVSS5.9AI score0.00471EPSS
Exploits1References2
Rows per page
Query Builder