CVE-2026-3410

CVE-2026-3410 affects itsourcecode Society Management System 1.0. The vulnerability resides in an unknown functionality of /admin/check_studid.php, where manipulating the student_id parameter enables SQL injection. Exploitation is described as possible remotely and publicly available, with high-s...

EUVD-2025-203269

A weakness has been identified in code-projects Student File Management System 1.0. This issue affects some unknown processing of the file /admin/updatestudent.php. This manipulation of the argument studid causes sql injection. The attack is possible to be carried out remotely. The exploit has be...

PT-2025-51127

Name of the Vulnerable Software and Affected Versions code-projects Student File Management System version 1.0 Description A flaw exists in the Student File Management System that allows for remote SQL injection. The issue is located in the login query.php file, specifically through manipulation ...

CVE-2025-14209

A weakness has been identified in Campcodes School File Management System 1.0. This impacts an unknown function of the file /updatequery.php. This manipulation of the argument studid causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and...

CVE-2025-14209

CVE-2025-14209 affects Campcodes School File Management System 1.0. A vulnerability in the file /update_query.php allows SQL injection through the parameter (stud_id/student_id depending on source). The issue enables remote exploitation and has publicly available exploits. Impact is described as ...

CVE-2025-14209 Campcodes School File Management System update_query.php sql injection

A weakness has been identified in Campcodes School File Management System 1.0. This impacts an unknown function of the file /updatequery.php. This manipulation of the argument studid causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and...

PT-2025-49500

Name of the Vulnerable Software and Affected Versions Campcodes School File Management System version 1.0 Description A flaw exists in Campcodes School File Management System that allows for SQL injection. The issue is related to the manipulation of the stud id argument within the /update query.p...

PT-2025-47847

Name of the Vulnerable Software and Affected Versions Campcodes School File Management System version 1.0 Description A flaw exists in Campcodes School File Management System that allows for SQL injection. The issue is located within the Login component, specifically in the /index.php file...

CVE-2025-10594

CVE-2025-10594 affects SourceCodester Online Student File Management System 1.0. The vulnerability is an SQL injection in the /admin/delete_student.php endpoint caused by unsafely manipulating the stud_id parameter, exploitable remotely. Multiple connected sources confirm the flaw; exploit is pub...

PT-2025-38154

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Student File Management System version 1.0 Description: A SQL injection flaw exists in the /admin/delete student.php file due to manipulation of the stud id argument. This issue is remotely exploitable. The exploit has...

CVE-2023-1675

A vulnerability was found in SourceCodester School Registration and Fee System 1.0. It has been classified as critical. Affected is an unknown function of the file /bilal final/editstud.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It is...

CVE-2021-26227

Cross-site scripting XSS vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to inject arbitrary web script or HTML via the student information parameters to editstud.php...

PT-2024-14038 · Stud.Ip · Stud.Ip

Name of the Vulnerable Software and Affected Versions: Stud.IP versions 5.x through 5.3.3 Description: The issue allows XSS with resultant upload of executable files because upload action and edit action in Admin SmileysController do not check the file extension. This leads to remote code executi...

CVE-2023-1675

A vulnerability was found in SourceCodester School Registration and Fee System 1.0. It has been classified as critical. Affected is an unknown function of the file /bilal final/editstud.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It is...

PT-2023-17158 · Unknown · Sourcecodester School Registration/Fee System

Name of the Vulnerable Software and Affected Versions: SourceCodester School Registration and Fee System version 1.0 Description: A critical issue has been found in the system, affecting an unknown function of the file /bilal final/edit stud.php of the component GET Parameter Handler. The...

CVE-2021-26229

SQL injection vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to editstud.php...

CVE-2021-26227

Cross-site scripting XSS vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to inject arbitrary web script or HTML via the student information parameters to editstud.php...

stud-sets.com Cross Site Scripting vulnerability OBB-1422967

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

stud.mruni.eu Cross Site Scripting vulnerability OBB-1237371

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

CVE-2020-12003

FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ControlFLASH: Version 14 and later, ControlFLASH Plus: Version 1 and later, FactoryTalk Asset Centre: Version 9 and later, FactoryTalk Linx CommDTM: Version 1 an...