11 matches found
CVE-2025-1189
CVE-2025-1189 affects 1000 Projects Attendance Tracking Management System v1.0. A SQL injection vulnerability exists in the /admin/chart1.php page via the course_id parameter, allowing remote exploitation as described in multiple sources. Exploitation details beyond the basic vector are not provi...
CVE-2025-0536
CVE-2025-0536 affects 1000 Projects Attendance Tracking Management System 1.0. A vulnerability in /admin/edit_action.php allows manipulating the attendance_id parameter to cause SQL injection. The attack is remotely executable, and the exploit has been disclosed publicly. NVD lists a high/critica...
CVE-2024-12899
CVE-2024-12899 affects the 1000 Projects Attendance Tracking Management System 1.0. The issue is a SQL injection in the parameter exposed by the file /admin/course_action.php, caused by manipulation of the argument named “course_code.” This vulnerability can be triggered remotely, and multiple so...
CVE-2024-12898
CVE-2024-12898 affects 1000 Projects Attendance Tracking Management System 1.0. The vulnerability is a SQL injection in the unknown code of /admin/faculty_action.php, triggered by manipulating the faculty_course_id parameter. It is exploitable remotely and classified as critical by multiple sourc...
CVE-2024-12927
The CVE-2024-12927 entry affects 1000 Projects Attendance Tracking Management System version 1.0. The vulnerability is an SQL injection in the file /faculty/check_faculty_login.php, triggered by manipulating the faculty_emailid parameter. It is exploitable remotely and is considered critical with...
CVE-2024-13005
CVE-2024-13005 affects 1000 Projects Attendance Tracking Management System 1.0; the vulnerability is an SQL injection in /admin/attendance_action.php via the attendance_id parameter. Exploitation is remote and exploits have been disclosed. Multiple sources corroborate the issue and indicate high ...
CVE-2024-12940
CVE-2024-12940 affects 1000 Projects Attendance Tracking Management System 1.0. The issue is an SQL injection in the /admin/student_action.php file caused by improper handling of the student_id parameter. This allows remote exploitation and impacts confidentiality, integrity, and availability as ...
CVE-2024-12946
CVE-2024-12946 affects 1000 Projects Attendance Tracking Management System 1.0. The issue resides in the admin_action.php workflow, where manipulating the argument admin_user_name triggers an SQL injection. The vulnerability is exploitable remotely, and public disclosures exist. Multiple sources ...
CVE-2024-13037
CVE-2024-13037 affects 1000 Projects Attendance Tracking Management System v1.0, specifically the attendance_report function in /admin/report.php. The root cause is manipulation of the course_id parameter enabling SQL injection, with remote exploitability and public disclosure. Impact is high: po...
CVE-2024-12497
CVE-2024-12497 affects 1000 Projects Attendance Tracking Management System 1.0. The vulnerability is an SQL injection in the file /admin/check_admin_login.php via the admin_user_name parameter. It can be triggered remotely and an exploit has been disclosed publicly. No remediation details are pro...
CVE-2024-12787
CVE-2024-12787 affects 1000 Projects Attendance Tracking Management System v1.0, with a SQL injection in the /student/check_student_login.php endpoint via the student_emailid parameter. The vulnerability is exploitable remotely and has been publicly disclosed. Multiple sources corroborate an atta...