CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SQL injection vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to edituser.php...

9.8CVSS7.5AI score0.00513EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 8:39 p.m.•1 views

CVE-2021-26230

Cross-site scripting XSS vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to inject arbitrary web script or HTML via the user information to saveuser.php...

6.1CVSS6.5AI score0.00222EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 8:39 p.m.•1 views

CVE-2021-26227

Cross-site scripting XSS vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to inject arbitrary web script or HTML via the student information parameters to editstud.php...

6.1CVSS6.5AI score0.00222EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 7:27 p.m.•4 views

CVE-2021-26223

SQL injection vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to viewpay.php...

9.8CVSS8.6AI score0.00513EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 6:26 p.m.•3 views

CVE-2021-26228

SQL injection vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to editclass1.php...

9.8CVSS8.6AI score0.00617EPSS

Exploits1References1

Prion•added 2021/11/08 9:15 p.m.•12 views

Cross site scripting

Multiple Cross Site Scripting XSS vulnerabilities exist in SourceCodester CASAP Automated Enrollment System 1.0 via the 1 userusername and 2 category parameters in saveclass.php, the 3 firstname, 4 class, and 5 status parameters in studenttable.php, the 6 category and 7 classname parameters in...

4.3CVSS6.2AI score0.00328EPSS

Exploits1References1Affected Software1

Cvelist•added 2021/11/08 8:42 p.m.•10 views

CVE-2021-40261

6.3AI score0.00328EPSS

Exploits1References1

Prion•added 2021/07/22 6:15 p.m.•9 views

Sql injection

SQL injection vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to edituser.php...

7.5CVSS9.8AI score0.00513EPSS

Exploits1References1Affected Software1

OSV•added 2021/07/22 5:15 p.m.•0 views

CVE-2021-26229

SQL injection vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to editstud.php...

9.8CVSS7.6AI score

Exploits0References1

NVD•added 2021/07/22 5:15 p.m.•13 views

CVE-2021-26229

SQL injection vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to editstud.php...

9.8CVSS0.00513EPSS

Exploits1References1

OSV•added 2021/07/22 5:15 p.m.•1 views

CVE-2021-26227

6.1CVSS5.9AI score

Exploits0References1

OSV•added 2021/07/22 5:15 p.m.•2 views

CVE-2021-26230

6.1CVSS6.5AI score

Exploits0References1

Prion•added 2021/07/22 5:15 p.m.•10 views

Sql injection

SQL injection vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to editclass1.php...

7.5CVSS9.8AI score0.00617EPSS

Exploits1References1Affected Software1

Cvelist•added 2021/07/22 5:6 p.m.•13 views

CVE-2021-26226

SQL injection vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to edituser.php...

10AI score0.00513EPSS

Exploits1References1

CVE•added 2021/07/22 4:23 p.m.•36 views

CVE-2021-26228

CVE-2021-26228 concerns SourceCodester CASAP Automated Enrollment System v1.0, where an SQL injection via the id parameter to edit_class1.php allows remote attackers to execute arbitrary SQL statements. The vulnerability arises from improper sanitization of user-supplied input in the edit_class1....

9.8CVSS9.9AI score0.00617EPSS

Exploits1References1Affected Software1

Cvelist•added 2021/07/22 4:17 p.m.•12 views

CVE-2021-26229

SQL injection vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to editstud.php...

10AI score0.00513EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by