13 matches found
EUVD-2023-40285
Malicious code in bioql PyPI...
CVE-2023-44752
CVE-2023-44752 affects the Student Study Center Desk Management System v1.0. A crafted GET request to /php-sscdms/admin/login.php can bypass authentication, enabling unauthorized access with total impact (confidentiality, integrity, availability = HIGH). Exploitability is network-based with low c...
CVE-2024-6732
CVE-2024-6732 affects SourceCodester Student Study Center Desk Management System 1.0. The vulnerability is in the /sscdms/classes/Users.php?f=save path, where manipulation of the id parameter enables SQL injection. Exploitation is remote and public/exploitable disclosures exist. Product is affect...
CVE-2024-6732 SourceCodester Student Study Center Desk Management System Users.php sql injection
A vulnerability classified as critical was found in SourceCodester Student Study Center Desk Management System 1.0. This vulnerability affects unknown code of the file /sscdms/classes/Users.php?f=save. The manipulation of the argument id leads to sql injection. The attack can be initiated remotel...
CVE-2023-36317
Cross Site Scripting XSS vulnerability in sourcecodester Student Study Center Desk Management System 1.0 allows attackers to run arbitrary code via crafted GET request to web application URL...
Cross site scripting
Cross Site Scripting XSS vulnerability in sourcecodester Student Study Center Desk Management System 1.0 allows attackers to run arbitrary code via crafted GET request to web application URL...
CVE-2023-36317
CVE-2023-36317 affects sourcecodester Student Study Center Desk Management System 1.0. It is a Cross Site Scripting (XSS) vulnerability exploitable via a crafted GET request to the web application URL that could allow arbitrary code execution in the user’s browser/session. Documents do not provid...
CVE-2023-29985
Sourcecodester Student Study Center Desk Management System v1.0 admin\reports\index.phpdatefrom has a SQL Injection vulnerability...
Sql injection
Sourcecodester Student Study Center Desk Management System v1.0 admin\reports\index.phpdatefrom has a SQL Injection vulnerability...
CVE-2023-29985
Sourcecodester Student Study Center Desk Management System v1.0 admin\reports\index.phpdatefrom has a SQL Injection vulnerability...
CVE-2023-2152
A vulnerability has been found in SourceCodester Student Study Center Desk Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file index.php. The manipulation of the argument page leads to file inclusion. The attack can be launched...
CVE-2023-2151
SourceCodester Student Study Center Desk Management System 1.0 contains a SQL injection vulnerability in manage_student.php triggered by manipulating the id parameter. The issue allows remote exploitation; multiple sources (NVD, Red Hat, CVE lists, PRION) corroborate the vulnerability and market ...
Cross site scripting
A vulnerability was found in SourceCodester Student Study Center Desk Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /admin/assign/assign.php. The manipulation of the argument sid leads to cross site scripting. The attack may be...