Lucene search
K

11 matches found

CNVD
CNVD
added 2025/07/18 12:0 a.m.2 views

Library System teacher/profile.php file code issue vulnerability

Library System is a library system. Library System has a code issue vulnerability that stems from the lack of valid validation of uploaded files by the parameter image in the file /user/teacher/profile.php. An attacker can exploit this vulnerability to upload malicious files...

8.8CVSS7.3AI score0.00311EPSS
Exploits1References1
OSV
OSV
added 2025/07/10 8:15 p.m.5 views

CVE-2025-7413

A vulnerability classified as critical has been found in code-projects Library System 1.0. This affects an unknown part of the file /user/teacher/profile.php. The manipulation of the argument image leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been...

8.8CVSS5.5AI score0.00311EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/07/10 12:0 a.m.2 views

Code-Projects Library System 代码问题漏洞

Library System is a library system. Library System has a code issue vulnerability that stems from the lack of valid validation of uploaded files by the parameter image in the file /user/teacher/profile.php. An attacker can exploit this vulnerability to upload malicious files...

8.8CVSS6.7AI score0.00311EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2025/05/22 10:57 p.m.8 views

CVE-2022-32378

itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/getteacherprofile.php?myindex=...

7.2CVSS8.1AI score0.00909EPSS
Exploits1References1
OSV
OSV
added 2024/05/20 4:15 a.m.5 views

CVE-2024-5115

A vulnerability classified as critical was found in Campcodes Complete Web-Based School Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /view/teacherprofile.php. The manipulation of the argument index leads to sql injection. The attack can be launched...

6.5CVSS6.4AI score0.00488EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/05/20 12:0 a.m.4 views

PT-2024-34538 · Unknown · Campcodes Complete Web-Based School Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Complete Web-Based School Management System version 1.0 Description: A critical issue was found in the system, affecting an unknown functionality of the file /view/teacher profile.php. The manipulation of the index argument leads to...

6.5CVSS7.1AI score0.00488EPSS
Exploits1References7
CNNVD
CNNVD
added 2024/05/20 12:0 a.m.4 views

Complete Web-Based School Management System SQL注入漏洞

Campcodes Complete Web-Based School Management System is a web-based school management system from Campcodes, Inc. A SQL injection vulnerability exists in version 1.0 of the Complete Web-Based School Management System, which originates from an unknown function in /view/teacherprofile.php that...

6.5CVSS7AI score0.00488EPSS
Exploits1References5
Packet Storm
Packet Storm
added 2022/09/12 12:0 a.m.252 views

Infix LMS 4.3.0 Shell Upload

Exploit Title: Infix LMS - Learning Management System Shell Upload Exploit Author: th3d1gger Vendor Homepage: https://codecanyon.net Software Link: https://codecanyon.net/item/infixlms-learning-management-system/30626608 Version: 4.3.0 Tested on Ubuntu 18.04 sign up as teacher go profile page and...

7.4AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2022/06/15 7:15 p.m.9 views

CVE-2022-32378

itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/getteacherprofile.php?myindex=...

7.2CVSS5.9AI score0.00909EPSS
Exploits1References2
OSV
OSV
added 2022/06/15 7:15 p.m.3 views

CVE-2022-32378

itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/getteacherprofile.php?myindex=...

7.2CVSS5.8AI score0.00909EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/06/15 12:0 a.m.4 views

Advanced School Management System SQL注入漏洞

Advanced School Management System is a school management system developed by Angel Jude Reyes Suarez. v1.0 of Advanced School Management System is vulnerable to SQL injection, which originates from /school/model /getteacherprofile.php?myindex=The page lacks validation for external input SQL...

7.2CVSS5.9AI score0.00909EPSS
Exploits1References2
Rows per page
Query Builder