Advanced School Management System Security Vulnerabilities and Issues — Advanced School Management System CVE List

Lucene search

Advanced School Management System ProjectAdvanced School Management System

5 matches found

CVE•added 2022/07/20 9:15 p.m.•54 views

CVE-2022-34586

itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via the grade parameter at /school/view/student_grade_wise.php.

8.8CVSS9AI score0.00308EPSS

CVE•added 2022/07/20 9:15 p.m.•49 views

CVE-2022-34588

itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via the grade parameter at /school/view/timetable_insert_form.php.

8.8CVSS9AI score0.00287EPSS

CVE•added 2023/10/16 8:15 p.m.•45 views

CVE-2023-4776

The School Management System WordPress plugin before 2.2.5 uses the WordPress esc_sql() function on a field not delimited by quotes and did not first prepare the query, leading to a SQL injection exploitable by relatively low-privilege users like Teachers.

8.8CVSS9AI score0.003EPSS

CVE•added 2024/06/24 3:15 a.m.•44 views

CVE-2024-6278

A vulnerability has been found in lahirudanushka School Management System 1.0.0/1.0.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file subject.php of the component Subject Page. The manipulation of the argument update leads to sql injection. The att...

8.8CVSS6.3AI score0.00134EPSS

CVE•added 2024/05/06 6:15 p.m.•38 views

CVE-2024-33404

A SQL injection vulnerability in /model/add_student_first_payment.php in campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the index parameter.

8.3CVSS8.5AI score0.00081EPSS