Lucene search
K

30 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:36 p.m.8 views

CVE-2023-49981

A directory listing vulnerability in School Fees Management System v1.0 allows attackers to list directories and sensitive files within the application without requiring authorization...

7.5CVSS6.7AI score0.00745EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:35 p.m.9 views

CVE-2023-49985

A cross-site scripting XSS vulnerability in the component /management/class of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cname parameter...

6.5CVSS5.8AI score0.00468EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:0 a.m.6 views

CVE-2023-51800

Cross Site Scripting XSS vulnerability in School Fees Management System v.1.0 allows a remote attacker to execute arbitrary code via a crafted payload to the mainsettings component in the phone, address, bank, accname, accnumber parameters, newclass and cname parameter, addnewparent function in t...

6.1CVSS6.4AI score0.00628EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 4:28 a.m.11 views

CVE-2023-49983

A cross-site scripting XSS vulnerability in the component /management/class of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...

6.8CVSS5.8AI score0.00574EPSS
Exploits1
NVD
NVD
added 2024/03/21 2:49 a.m.13 views

CVE-2023-49985

A cross-site scripting XSS vulnerability in the component /management/class of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cname parameter...

6.5CVSS5.6AI score0.00468EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/03/21 12:0 a.m.3 views

School Fees Management System 安全漏洞

School Fees Management System is a tuition management system. A security vulnerability exists in School Fees Management System version v1.0 that originates from a broken access control in /admin/management/users...

8.8CVSS6.8AI score0.00842EPSS
Exploits1References3
Prion
Prion
added 2024/03/15 12:17 a.m.48 views

Improper access control

Broken access control in the component /admin/management/users of School Fees Management System v1.0 allows attackers to escalate privileges and perform Administrative actions, including adding and deleting user accounts...

7.6AI score0.00842EPSS
Exploits1References2
Prion
Prion
added 2024/03/15 12:17 a.m.45 views

Cross site scripting

A cross-site scripting XSS vulnerability in the component /management/settings of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...

6.1AI score0.00483EPSS
Exploits1References2
NVD
NVD
added 2024/03/07 1:15 a.m.10 views

CVE-2023-49987

A cross-site scripting XSS vulnerability in the component /management/term of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the tname parameter...

5.4CVSS5.6AI score0.00431EPSS
Exploits1References2
NVD
NVD
added 2024/03/07 1:15 a.m.15 views

CVE-2023-49986

A cross-site scripting XSS vulnerability in the component /admin/parent of School Fees Management System 1.0 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...

4.7CVSS5.6AI score0.00471EPSS
Exploits1References2
OSV
OSV
added 2024/03/07 1:15 a.m.4 views

CVE-2023-49986

A cross-site scripting XSS vulnerability in the component /admin/parent of School Fees Management System 1.0 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...

4.7CVSS5.9AI score0.00471EPSS
Exploits1References2
Prion
Prion
added 2024/03/07 1:15 a.m.17 views

Cross site scripting

A cross-site scripting XSS vulnerability in the component /admin/parent of School Fees Management System 1.0 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...

6AI score0.00471EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/03/07 12:0 a.m.4 views

School Fees Management System Security Breach

School Fees Management System is a tuition management system. A security vulnerability exists in School Fees Management System version 1.0. An attacker can exploit this vulnerability to execute arbitrary web script or HTML via a specially crafted payload that injects the name parameter...

4.7CVSS6.7AI score0.00471EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/03/07 12:0 a.m.14 views

CVE-2023-49987

A cross-site scripting XSS vulnerability in the component /management/term of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the tname parameter...

5.7AI score0.00431EPSS
Exploits1References2
CVE
CVE
added 2024/03/07 12:0 a.m.58 views

CVE-2023-49986

The CVE-2023-49986 entry describes an XSS vulnerability in School Fees Management System 1.0, specifically in the /admin/parent component where a crafted payload placed in the name parameter can cause arbitrary web scripts/HTML to run. Root cause is unvalidated input in the name field leading to ...

4.7CVSS5.8AI score0.00471EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/03/07 12:0 a.m.16 views

CVE-2023-49987

A cross-site scripting XSS vulnerability in the component /management/term of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the tname parameter...

5.8AI score0.00431EPSS
Exploits1References2
CVE
CVE
added 2024/03/07 12:0 a.m.69 views

CVE-2023-49987

CVE-2023-49987 affects School Fees Management System v1.0, with a cross-site scripting (XSS) flaw in the /management/term component where a crafted payload placed in the tname parameter can execute arbitrary script/HTML. Root cause: input handling in tname allows script execution. Impact: potenti...

5.4CVSS5.7AI score0.00431EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2024/03/06 12:0 a.m.14 views

CVE-2023-49985

A cross-site scripting XSS vulnerability in the component /management/class of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cname parameter...

5.7AI score0.00468EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/03/06 12:0 a.m.14 views

CVE-2023-49983

A cross-site scripting XSS vulnerability in the component /management/class of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...

5.9AI score0.00574EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/03/06 12:0 a.m.28 views

CVE-2023-49981

A directory listing vulnerability in School Fees Management System v1.0 allows attackers to list directories and sensitive files within the application without requiring authorization...

6.6AI score0.00745EPSS
Exploits1References2
Rows per page
Query Builder