Lucene search
K

30 matches found

Vulnrichment
Vulnrichment
added 2022/10/07 12:0 a.m.5 views

CVE-2022-40872

An SQL injection vulnerability issue was discovered in Sourcecodester Simple E-Learning System 1.0., in /vcs/classRoom.php?classCode=, classCode...

7.9AI score0.00872EPSS
Exploits1References1
CVE
CVE
added 2022/08/08 12:50 p.m.60 views

CVE-2022-2704

CVE-2022-2704 affects the SourceCodester Simple E-Learning System. The vulnerability is in the downloadFiles.php file where the value of the download parameter is not properly validated, allowing arbitrary file downloads and resulting in information disclosure. The issue can be exploited remotely...

7.5CVSS5.9AI score0.00656EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/08/08 12:26 p.m.25 views

CVE-2022-2701 SourceCodester Simple E-Learning System claire_blake cross site scripting

A vulnerability classified as problematic was found in SourceCodester Simple E-Learning System. This vulnerability affects unknown code of the file /claireblake. The manipulation of the argument Bio leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclose...

3.5CVSS6.3AI score0.00439EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/08/08 12:0 a.m.5 views

Simple E-Learning System 跨站脚本漏洞

Simple E-Learning System is a simple e-learning system from Carlo Montero's personal developer. Simple E-Learning System is vulnerable to a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data by the parameter Bio in the file...

6.1CVSS5.2AI score0.00439EPSS
Exploits1References3
Cvelist
Cvelist
added 2022/08/07 8:1 p.m.26 views

CVE-2022-2698 SourceCodester Simple E-Learning System search.php sql injection

A vulnerability was found in SourceCodester Simple E-Learning System. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument searchPost leads to sql injection. The attack can be launched remotely. The...

6.3CVSS10AI score0.00613EPSS
Exploits1References2
CVE
CVE
added 2022/08/07 8:0 p.m.49 views

CVE-2022-2697

SourceCodester Simple E-Learning System is affected by a SQL injection in the comment_frame.php file, via the post_id parameter. The vulnerability arises from an unknown function and can be exploited remotely; the exploit has been disclosed publicly. The identifier VDB-205818 is associated with t...

7.5CVSS7.2AI score0.00512EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2022/07/20 12:15 p.m.18 views

CVE-2022-2489

A vulnerability was found in SourceCodester Simple E-Learning System 1.0. It has been rated as critical. This issue affects some unknown processing of the file classRoom.php. The manipulation of the argument classCode with the input 1'||SELECT 0x6770715a WHERE 8795=8795 AND SELECT 8342 FROMSELECT...

8.8CVSS0.00625EPSS
Exploits1References2
CVE
CVE
added 2022/07/20 11:35 a.m.57 views

CVE-2022-2490

CVE-2022-2490 affects SourceCodester Simple E-Learning System 1.0. The vulnerability is a SQL injection in an unknown function of the file search.php , triggered by manipulating the parameter classCode (example payload includes 1'||(SELECT 0x74666264 …)). Exploitation is possible remotely, and pu...

8.8CVSS7.8AI score0.00625EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2022/07/20 11:35 a.m.52 views

CVE-2022-2489

SourceCodester Simple E-Learning System 1.0 contains a SQL injection in classRoom.php via crafted input of the classCode parameter (e.g., 1'||(SELECT ...)). The vulnerability is remote-exploitable and has a CVSSv3.1 base score of 8.8 (HIGH) per NVD, with high impact on confidentiality, integrity,...

8.8CVSS7.7AI score0.00625EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/07/20 11:35 a.m.21 views

CVE-2022-2489 SourceCodester Simple E-Learning System classRoom.php sql injection

A vulnerability was found in SourceCodester Simple E-Learning System 1.0. It has been rated as critical. This issue affects some unknown processing of the file classRoom.php. The manipulation of the argument classCode with the input 1'||SELECT 0x6770715a WHERE 8795=8795 AND SELECT 8342 FROMSELECT...

6.3CVSS9.1AI score0.00625EPSS
Exploits1References2
Rows per page
Query Builder