15 matches found
EUVD-2025-7477
Malicious code in bioql PyPI...
EUVD-2025-6103
Malicious code in bioql PyPI...
CVE-2025-29504
Insecure Permission vulnerability in student-manage 1 allows a local attacker to escalate privileges via the Unsafe permission verification...
CVE-2025-29504
Insecure Permission vulnerability in student-manage 1 allows a local attacker to escalate privileges via the Unsafe permission verification...
CVE-2025-29504
The CVE-2025-29504 entry concerns the student-manage product (version 1) with an insecure permission verification that enables local privilege escalation. The advisory indicates a local attack vector with high impact to confidentiality, integrity, and availability (CVSS v3.1: AV:L/AC:L/PR:L/UI:N/...
CVE-2025-29504
Insecure Permission vulnerability in student-manage 1 allows a local attacker to escalate privileges via the Unsafe permission verification...
CVE-2025-2042
A vulnerability has been found in huang-yk student-manage 1.0 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...
CVE-2025-2042
A vulnerability has been found in huang-yk student-manage 1.0 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...
CVE-2025-2042
CVE-2025-2042 affects huang-yk student-manage 1.0. The issue is described as a cross-site request forgery vulnerability arising from unknown code paths in the application. Exploitation is remotely possible and the exploit has been publicly disclosed. Multiple connected sources corroborate a CSRF ...
CVE-2025-2042 huang-yk student-manage cross-site request forgery
A vulnerability has been found in huang-yk student-manage 1.0 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...
CVE-2025-2042 huang-yk student-manage cross-site request forgery
A vulnerability has been found in huang-yk student-manage 1.0 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...
CVE-2024-13902
A vulnerability, which was classified as problematic, was found in huang-yk student-manage 1.0. This affects an unknown part of the component Edit a Student Information Page. The manipulation of the argument Class leads to cross site scripting. It is possible to initiate the attack remotely. The...
CVE-2024-13902 huang-yk student-manage Edit a Student Information Page cross site scripting
A vulnerability, which was classified as problematic, was found in huang-yk student-manage 1.0. This affects an unknown part of the component Edit a Student Information Page. The manipulation of the argument Class leads to cross site scripting. It is possible to initiate the attack remotely. The...
student-manage 代码注入漏洞
student-manage is a student grade management system developed by a Chinese individual developer, Huang Yongkang. A code injection vulnerability exists in student-manage version 1.0, which stems from an incorrect operation of the parameter Class that can lead to cross-site scripting...
student-manage 安全漏洞
student-manage is a student grade management system developed by the Chinese individual developer Huang Yongkang. A security vulnerability exists in huang-yk student-manage version 1.0, which stems from a possible cross-site request forgery issue...