Lucene search
K

18 matches found

RedhatCVE
RedhatCVE
added 2025/12/01 2:16 p.m.5 views

CVE-2025-13784

A weakness has been identified in yungifez Skuul School Management System up to 2.6.5. This vulnerability affects unknown code of the file /dashboard/schools/1/edit of the component SVG File Handler. This manipulation causes cross site scripting. The attack is possible to be carried out remotely...

4.8CVSS5.6AI score0.00239EPSS
Exploits1References1
EUVD
EUVD
added 2025/11/30 9:30 a.m.6 views

EUVD-2025-199925

A weakness has been identified in yungifez Skuul School Management System up to 2.6.5. This vulnerability affects unknown code of the file /dashboard/schools/1/edit of the component SVG File Handler. This manipulation causes cross site scripting. The attack is possible to be carried out remotely...

4.8CVSS3AI score0.00239EPSS
Exploits1References5
EUVD
EUVD
added 2025/11/30 9:30 a.m.3 views

EUVD-2025-199926

A security vulnerability has been detected in yungifez Skuul School Management System up to 2.6.5. This issue affects some unknown processing of the file /user/profile of the component Image Handler. Such manipulation leads to information disclosure. The attack may be performed from remote. The...

5.3CVSS5.7AI score0.00322EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2025/11/30 9:30 a.m.7 views

yungifez Skuul School Management System vulnerable to XSS via SVG

A weakness has been identified in yungifez Skuul School Management System up to 2.6.5. This vulnerability affects unknown code of the file /dashboard/schools/1/edit of the component SVG File Handler. This manipulation causes cross site scripting. The attack is possible to be carried out remotely...

4.8CVSS5.8AI score0.00239EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2025/11/30 9:30 a.m.4 views

GHSA-92X3-MFJP-J3H3 yungifez Skuul School Management System vulnerable to XSS via SVG

A weakness has been identified in yungifez Skuul School Management System up to 2.6.5. This vulnerability affects unknown code of the file /dashboard/schools/1/edit of the component SVG File Handler. This manipulation causes cross site scripting. The attack is possible to be carried out remotely...

4.8CVSS5.7AI score0.00239EPSS
Exploits1References6
OSV
OSV
added 2025/11/30 8:15 a.m.6 views

CVE-2025-13785

A security vulnerability has been detected in yungifez Skuul School Management System up to 2.6.5. This issue affects some unknown processing of the file /user/profile of the component Image Handler. Such manipulation leads to information disclosure. The attack may be performed from remote. The...

6.5CVSS5.2AI score0.00322EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/11/30 7:32 a.m.15 views

CVE-2025-13785 yungifez Skuul School Management System Image profile information disclosure

A security vulnerability has been detected in yungifez Skuul School Management System up to 2.6.5. This issue affects some unknown processing of the file /user/profile of the component Image Handler. Such manipulation leads to information disclosure. The attack may be performed from remote. The...

5.3CVSS0.00322EPSS
Exploits1References4
NVD
NVD
added 2025/11/30 7:15 a.m.7 views

CVE-2025-13784

A weakness has been identified in yungifez Skuul School Management System up to 2.6.5. This vulnerability affects unknown code of the file /dashboard/schools/1/edit of the component SVG File Handler. This manipulation causes cross site scripting. The attack is possible to be carried out remotely...

4.8CVSS0.00239EPSS
Exploits1References4
OSV
OSV
added 2025/11/30 7:15 a.m.6 views

CVE-2025-13784

A weakness has been identified in yungifez Skuul School Management System up to 2.6.5. This vulnerability affects unknown code of the file /dashboard/schools/1/edit of the component SVG File Handler. This manipulation causes cross site scripting. The attack is possible to be carried out remotely...

4.8CVSS4.1AI score0.00239EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/11/30 7:2 a.m.4 views

CVE-2025-13784 yungifez Skuul School Management System SVG File edit cross site scripting

A weakness has been identified in yungifez Skuul School Management System up to 2.6.5. This vulnerability affects unknown code of the file /dashboard/schools/1/edit of the component SVG File Handler. This manipulation causes cross site scripting. The attack is possible to be carried out remotely...

4.8CVSS5.4AI score0.00239EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/11/30 12:0 a.m.9 views

PT-2025-48387

Name of the Vulnerable Software and Affected Versions yungifez Skuul School Management System versions up to 2.6.5 Description A security issue exists in yungifez Skuul School Management System. The problem relates to the processing of the file /user/profile within the Image Handler component,...

6.5CVSS4.1AI score0.00322EPSS
Exploits1References9
RedhatCVE
RedhatCVE
added 2025/11/10 12:22 p.m.11 views

CVE-2025-12918

A security flaw has been discovered in yungifez Skuul School Management System up to 2.6.5. The impacted element is an unknown function of the file /dashboard/fees/fee-invoices/ of the component View Fee Invoice. Performing manipulation of the argument invoiceid results in improper control of...

5.3CVSS6.3AI score0.00335EPSS
Exploits1References1
Snyk
Snyk
added 2025/11/09 8:39 a.m.1 views

Resource Injection

Overview yungifez/skuul is an A multi school management system. Affected versions of this package are vulnerable to Resource Injection via the invoiceid parameter in the /dashboard/fees/fee-invoices/. A user can access unauthorized resources by manipulating this parameter remotely. Remediation...

5.3CVSS4.5AI score0.00335EPSS
Exploits1References2
OSV
OSV
added 2025/11/09 8:15 a.m.2 views

CVE-2025-12918

A security flaw has been discovered in yungifez Skuul School Management System up to 2.6.5. The impacted element is an unknown function of the file /dashboard/fees/fee-invoices/ of the component View Fee Invoice. Performing manipulation of the argument invoiceid results in improper control of...

5.3CVSS5.2AI score0.00335EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/11/09 8:2 a.m.2 views

CVE-2025-12918 yungifez Skuul School Management System View Fee Invoice fee-invoices resource injection

A security flaw has been discovered in yungifez Skuul School Management System up to 2.6.5. The impacted element is an unknown function of the file /dashboard/fees/fee-invoices/ of the component View Fee Invoice. Performing manipulation of the argument invoiceid results in improper control of...

3.1CVSS6.1AI score0.00335EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/11/09 8:2 a.m.9 views

CVE-2025-12918 yungifez Skuul School Management System View Fee Invoice fee-invoices resource injection

A security flaw has been discovered in yungifez Skuul School Management System up to 2.6.5. The impacted element is an unknown function of the file /dashboard/fees/fee-invoices/ of the component View Fee Invoice. Performing manipulation of the argument invoiceid results in improper control of...

3.1CVSS0.00335EPSS
Exploits1References5
CVE
CVE
added 2025/11/09 8:2 a.m.19 views

CVE-2025-12918

The CVE-2025-12918 entry concerns yungifez Skuul School Management System (up to 2.6.5). Affected component: View Fee Invoice, specifically the /dashboard/fees/fee-invoices/ path. Root cause: manipulating the invoice_id parameter leads to improper control of resource identifiers (an IDOR-like fla...

5.3CVSS6.1AI score0.00335EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2025/11/09 12:0 a.m.5 views

PT-2025-45577

Name of the Vulnerable Software and Affected Versions yungifez Skuul School Management System versions up to 2.6.5 Description A security flaw exists in yungifez Skuul School Management System. Manipulation of the invoice id argument within an unknown function of the /dashboard/fees/fee-invoices/...

5.3CVSS3.5AI score0.00335EPSS
Exploits1References10
Rows per page
Query Builder