CVE-2026-9485

CVE-2026-9485 affects SourceCodester Student Grades Management System 1.0. The vulnerability is a cross-site scripting flaw in the file students.php where manipulating the argument Remarks enables XSS. Remote exploitation is possible and the exploit is publicly available. The connected data provi...

CVE-2026-9485 SourceCodester Student Grades Management System students.php cross site scripting

A vulnerability was identified in SourceCodester Student Grades Management System 1.0. Affected by this issue is some unknown functionality of the file students.php. The manipulation of the argument Remarks leads to cross site scripting. Remote exploitation of the attack is possible. The exploit ...

CVE-2025-63955

A Cross-Site Request Forgery CSRF vulnerability in the manage-students.php component of PHPGurukul Student Record System v3.2 allows an attacker to trick an authenticated administrator into submitting a forged request. This leads to the unauthorized deletion of user accounts, causing a Denial of...

CVE-2025-63955

A Cross-Site Request Forgery CSRF vulnerability in the manage-students.php component of PHPGurukul Student Record System v3.2 allows an attacker to trick an authenticated administrator into submitting a forged request. This leads to the unauthorized deletion of user accounts, causing a Denial of...

EUVD-2025-32523

A flaw has been found in code-projects Online Course Registration 1.0. Impacted is an unknown function of the file /admin/manage-students.php. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been published and may be used...

PT-2025-39723

Name of the Vulnerable Software and Affected Versions ProjectsAndPrograms School Management System version 1.0 Description A SQL injection issue exists in ProjectsAndPrograms School Management System version 1.0. The issue is located in the owner panel/fetch-data/select-students.php file,...

CVE-2025-6912

A vulnerability was found in PHPGurukul Student Record System 3.2. It has been rated as critical. This issue affects some unknown processing of the file /manage-students.php. The manipulation of the argument del leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2025-6912 PHPGurukul Student Record System manage-students.php sql injection

A vulnerability was found in PHPGurukul Student Record System 3.2. It has been rated as critical. This issue affects some unknown processing of the file /manage-students.php. The manipulation of the argument del leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2025-6912 PHPGurukul Student Record System manage-students.php sql injection

A vulnerability was found in PHPGurukul Student Record System 3.2. It has been rated as critical. This issue affects some unknown processing of the file /manage-students.php. The manipulation of the argument del leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2025-6912

CVE-2025-6912 affects PHPGurukul Student Record System 3.2. The vulnerability is a SQL injection in /manage-students.php triggered by manipulating the del argument, enabling remote exploitation. Multiple sources consistently describe the issue as a critical SQL injection with an attacker able to ...

PHPGurukul Student Record System 注入漏洞

Student Record System is a software application. Student Record System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter del in the file /manage-students.php. An attacker can exploit this vulnerability to...

CVE-2025-6153

CVE-2025-6153 concerns PHPGurukul Hostel Management System 1.0. The vulnerability is an SQL injection in the /admin/students.php script caused by manipulating the search_box parameter. Attacks are remote and the exploit has been publicly disclosed. Across sources, impact is indicated with high li...

CVE-2024-6801 SourceCodester Online Student Management System add-students.php unrestricted upload

A vulnerability, which was classified as critical, has been found in SourceCodester Online Student Management System 1.0. This issue affects some unknown processing of the file /add-students.php. The manipulation of the argument image leads to unrestricted upload. The attack may be initiated...

CVE-2024-6801 SourceCodester Online Student Management System add-students.php unrestricted upload

A vulnerability, which was classified as critical, has been found in SourceCodester Online Student Management System 1.0. This issue affects some unknown processing of the file /add-students.php. The manipulation of the argument image leads to unrestricted upload. The attack may be initiated...

CVE-2024-2481

A vulnerability, which was classified as critical, was found in Surya2Developer Hostel Management System 1.0. Affected is an unknown function of the file /admin/manage-students.php. The manipulation of the argument del leads to improper access controls. It is possible to launch the attack remotel...

CVE-2024-2481 Surya2Developer Hostel Management System manage-students.php access control

A vulnerability, which was classified as critical, was found in Surya2Developer Hostel Management System 1.0. Affected is an unknown function of the file /admin/manage-students.php. The manipulation of the argument del leads to improper access controls. It is possible to launch the attack remotel...

CdeVision(students.php?id) (gallery.php?cat) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability CdeVisionstudents.php?id gallery.php?cat AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.cdevision.com/ Persian Gulf 4 Ever! Dork : "Site by cdeVision"...

CdeVision SQL Injection

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability CdeVisionstudents.php?id gallery.php?cat AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.cdevision.com/ Persian Gulf 4 Ever! Dork : "Site by cdeVision"...