Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/04/28 12:0 a.m.20 views

CVE-2024-53636

An arbitrary file upload vulnerability via writefile.php of Serosoft Academia Student Information System SIS EagleR-1.0.118 allows attackers to execute arbitrary code via ../ in the filePath parameter...

6.4CVSS8AI score0.01247EPSS
Exploits1References1
OSV
OSV
added 2025/04/26 3:15 p.m.7 views

CVE-2024-53636

An arbitrary file upload vulnerability via writefile.php of Serosoft Academia Student Information System SIS EagleR-1.0.118 allows attackers to execute arbitrary code via ../ in the filePath parameter...

9.8CVSS6.2AI score0.01247EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/04/26 12:0 a.m.4 views

PT-2025-17959

Name of the Vulnerable Software and Affected Versions Serosoft Academia Student Information System SIS EagleR version 1.0.118 Description An arbitrary file upload vulnerability via writefile.php allows attackers to execute arbitrary code via ../ in the filePath parameter. This issue enables...

9.8CVSS6.2AI score0.01247EPSS
Exploits1References8
Vulnrichment
Vulnrichment
added 2025/04/26 12:0 a.m.4 views

CVE-2024-53636

An arbitrary file upload vulnerability via writefile.php of Serosoft Academia Student Information System SIS EagleR-1.0.118 allows attackers to execute arbitrary code via ../ in the filePath parameter...

6.4CVSS7.9AI score0.01247EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/03/05 1:4 a.m.24 views

CVE-2025-27585

A stored cross-site scripting XSS vulnerability in Serosoft Solutions Pvt Ltd Academia Student Information System SIS EagleR v1.0.118 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Print Name parameter at /rest/staffResource/update...

5.4CVSS5.3AI score0.00197EPSS
Exploits0References1
OSV
OSV
added 2025/03/03 1:15 a.m.3 views

CVE-2025-25949

A stored cross-site scripting XSS vulnerability in Serosoft Solutions Pvt Ltd Academia Student Information System SIS EagleR v1.0.118 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the User ID parameter at /rest/staffResource/update...

5.4CVSS5.9AI score0.00298EPSS
Exploits1References3
Rows per page
Query Builder