Lucene search
+L

32 matches found

Cvelist
Cvelist
added 2023/09/11 12:0 a.m.24 views

CVE-2023-40946

Schoolmate 1.3 is vulnerable to SQL Injection in the variable $username from SESSION in ValidateLogin.php...

10AI score0.00629EPSS
Exploits1References1
CVE
CVE
added 2023/09/11 12:0 a.m.92 views

CVE-2023-40946

CVE-2023-40946 affects Schoolmate 1.3 with a SQL Injection in the SESSION variable $username used in ValidateLogin.php. The NVD entry lists CVSS v3.1: 9.8 (CRITICAL) with network attack vector, no user interaction, and no privileges required; impact to confidentiality, integrity, and availability...

9.8CVSS9.7AI score0.00629EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2023/09/11 12:0 a.m.101 views

CVE-2023-40944

CVE-2023-40944 affects Schoolmate 1.3 with a SQL Injection in the variable $schoolname used in the database query in header.php. The vulnerability is characterized as CVSS v3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, base score 9.8 (CRITICAL). Connected sources corroborate the issue across multiple...

9.8CVSS9.7AI score0.00629EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2023/08/15 10:15 p.m.23 views

CVE-2023-39850

Schoolmate v1.3 was discovered to contain multiple SQL injection vulnerabilities via the $courseid and $teacherid parameters at DeleteFunctions.php...

9.8CVSS10AI score0.00708EPSS
Exploits1References2
OSV
OSV
added 2023/08/15 10:15 p.m.3 views

CVE-2023-39850

Schoolmate v1.3 was discovered to contain multiple SQL injection vulnerabilities via the $courseid and $teacherid parameters at DeleteFunctions.php...

9.8CVSS5.8AI score0.00708EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/08/15 10:15 p.m.5 views

CVE-2023-39850

Schoolmate v1.3 was discovered to contain multiple SQL injection vulnerabilities via the $courseid and $teacherid parameters at DeleteFunctions.php...

9.8CVSS7.4AI score0.00708EPSS
Exploits1References3
Prion
Prion
added 2023/08/15 10:15 p.m.11 views

Sql injection

Schoolmate v1.3 was discovered to contain multiple SQL injection vulnerabilities via the $courseid and $teacherid parameters at DeleteFunctions.php...

7.5CVSS10AI score0.00708EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2023/08/15 12:0 a.m.3 views

Schoolmate SQL注入漏洞

Schoolmate is a PHP/MySQL solution for elementary, middle and high schools from mrmunkey22 Individual Developer. A security vulnerability exists in Schoolmate v1.3 that stems from the $courseid and $teacherid parameters in DeleteFunctions.php containing multiple SQL injection vulnerabilities...

9.8CVSS8.6AI score0.00708EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/08/15 12:0 a.m.6 views

PT-2023-27134 · Unknown · Schoolmate

Name of the Vulnerable Software and Affected Versions: Schoolmate version 1.3 Description: The issue is related to multiple SQL injection vulnerabilities. These vulnerabilities can be exploited via the $courseid and $teacherid parameters at the DeleteFunctions.php file. There is no information...

9.8CVSS9.8AI score0.00708EPSS
Exploits1References8
CVE
CVE
added 2023/08/15 12:0 a.m.116 views

CVE-2023-39850

CVE-2023-39850 : Schoolmate v1.3 contains multiple SQL injection vulnerabilities in DeleteFunctions.php, exploitable via the parameters $courseid and $teacherid. The NVD entry rates the impact as CRITICAL (CVSS 3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H), indicating potential high confidentiality, ...

9.8CVSS9.9AI score0.00708EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2023/08/15 12:0 a.m.24 views

CVE-2023-39850

Schoolmate v1.3 was discovered to contain multiple SQL injection vulnerabilities via the $courseid and $teacherid parameters at DeleteFunctions.php...

10AI score0.00708EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/08/15 12:0 a.m.10 views

CVE-2023-39850

Schoolmate v1.3 was discovered to contain multiple SQL injection vulnerabilities via the $courseid and $teacherid parameters at DeleteFunctions.php...

8.6AI score0.00708EPSS
Exploits1References2
Rows per page
Query Builder