37 matches found
CVE-2021-28006
Web Based Quiz System 1.0 is affected by cross-site scripting XSS in admin.php through the options parameter...
CVE-2022-35422
Web Based Quiz System v1.0 was discovered to contain a SQL injection vulnerability via the qid parameter at update.php...
EUVD-2021-14725
Malware in sbrugna...
EUVD-2021-14724
Malware in sbrugna...
EUVD-2022-38310
Malicious code in bioql PyPI...
EUVD-2022-36057
Malicious code in bioql PyPI...
CVE-2022-44411
Web Based Quiz System v1.0 transmits user passwords in plaintext during the authentication process, allowing attackers to obtain users' passwords via a bruteforce attack...
CVE-2022-32991
Web Based Quiz System v1.0 was discovered to contain a SQL injection vulnerability via the eid parameter at welcome.php...
Web Based Quiz System Information Disclosure Vulnerability
Web Based Quiz System is a web based quiz system for janobe individual developers. A vulnerability exists in Web Based Quiz System v1.0, which can be exploited by attackers to obtain a user's password via brute-force cracking...
CVE-2022-44411
Web Based Quiz System v1.0 transmits user passwords in plaintext during the authentication process, allowing attackers to obtain users' passwords via a bruteforce attack...
Authentication flaw
Web Based Quiz System v1.0 transmits user passwords in plaintext during the authentication process, allowing attackers to obtain users' passwords via a bruteforce attack...
CVE-2022-44411
CVE-2022-44411 affects Web Based Quiz System v1.0, where authentication transmits passwords in plaintext, enabling password disclosure via brute-force attacks. The linked metrics indicate high confidentiality impact (C:H) with network attack vector and low attack complexity, no integrity or avail...
CVE-2022-44411
Web Based Quiz System v1.0 transmits user passwords in plaintext during the authentication process, allowing attackers to obtain users' passwords via a bruteforce attack...
Sql injection
Web Based Quiz System v1.0 was discovered to contain a SQL injection vulnerability via the qid parameter at update.php...
CVE-2022-35422
CVE-2022-35422 affects Web Based Quiz System v1.0, with a SQL injection via the qid parameter in update.php. The Red/European and vendor-related entries confirm the vulnerability is in the web app and involves the qid input being used in a SQL query, leading to potential data exposure or modifica...
Web Based Quiz System SQL注入漏洞
Web Based Quiz System is an application used for a simple online based project. Web Based Quiz System v1.0 is vulnerable to SQL injection, which stems from the lack of validation of external input SQL statements in the eid parameter of welcome.php. An attacker could use this vulnerability to...
CVE-2022-32991
Web Based Quiz System v1.0 was discovered to contain a SQL injection vulnerability via the eid parameter at welcome.php...
Sql injection
Web Based Quiz System v1.0 was discovered to contain a SQL injection vulnerability via the eid parameter at welcome.php...
CVE-2022-32991
Web Based Quiz System v1.0 is vulnerable to SQL injection via the eid parameter in welcome.php due to lack of input validation. This can allow an attacker to execute arbitrary SQL and potentially steal sensitive database data. Several sources (CNVD, NVD, Red Hat, CVE records) confirm the vulnerab...
CVE-2022-32991
Web Based Quiz System v1.0 was discovered to contain a SQL injection vulnerability via the eid parameter at welcome.php...