6 matches found
CVE-2024-34936
A SQL injection vulnerability in /view/event1.php in Campcodes Complete Web-Based School Management System 1.0 allows an attacker to execute arbitrary SQL commands via the month parameter...
EUVD-2016-0876
Malware in sbrugna...
CVE-2025-48372 Schule Has Insecure OTP Length, is Susceptible to Brute-Force Attacks
Schule is open-source school management system software. The generateOTP function generates a 4-digit numeric One-Time Password OTP. Prior to version 1.0.1, even if a secure random number generator is used, the short length and limited range 1000–9999 results in only 9000 possible combinations...
The vulnerability of VMware vCenter Server’s software management system, related to deficiencies in access control, allows attackers to increase their privileges.
The vulnerability of VMware vCenter Server’s software management system is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to enhance their privileges by sending specially crafted malware packages remotely...
The vulnerability of VMware vCenter Server’s software management system is related to deficiencies in authentication procedures, which allow attackers to escalate their privileges.
The vulnerability of VMware vCenter Server’s software management software is related to deficiencies in authentication procedures. Exploiting this vulnerability can allow attackers to gain increased privileges...
The vulnerability of Cisco Firepower Management Center’s software management system allows a intruder to trigger a service failure.
The vulnerability of Cisco Firepower Management Center’s software management system is related to errors in the certificate validation process. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...