Automatic Question Paper Generator System Security Vulnerabilities and Issues — Automatic Question Paper Generator System CVE List

Automatic Question Paper Generator System ProjectAutomatic Question Paper Generator System

9 matches found

CVE•added 2023/03/17 2:39 p.m.•60 views

CVE-2023-1474

CVE-2023-1474 affects SourceCodester Automatic Question Paper Generator System 1.0, specifically the GET Parameter Handler in users/question_papers/manage_question_paper.php. The root cause is improper handling of the id parameter, enabling SQL injection remotely; exploits have been disclosed pub...

9.8CVSS8.4AI score0.00306EPSS

Web

CVE•added 2022/03/29 5:50 a.m.•59 views

CVE-2022-1073

The CVE-2022-1073 issue affects Automatic Question Paper Generator 1.0. It is described as allowing remote privilege escalation. Documents provide CVSS v3.1/2.0 scores (CRITICAL/high), attack vector NETWORK with low complexity and no authentication required, but the exact root cause, vulnerable c...

9.8CVSS8.5AI score0.00346EPSS

CVE•added 2022/03/29 5:50 a.m.•54 views

CVE-2022-1076

CVE-2022-1076 affects the Automatic Question Paper Generator System 1.0. The vulnerable component is the file /aqpg/users/login.php, where manipulation of the First Name/Middle Name/Last Name parameters leads to a cross-site scripting (XSS) vulnerability. The vulnerability is described as exploit...

6.1CVSS5AI score0.00202EPSS

Web

CVE•added 2023/03/23 9:0 a.m.•53 views

CVE-2023-1591

The CVE-2023-1591 entry concerns a SQL injection in SourceCodester Automatic Question Paper Generator System 1.0. Affected component: the file classes/Users.php?f=save_ruser. The vulnerability is triggered by manipulating the id/email parameters, with remote initial access described as possible i...

9.8CVSS8.3AI score0.00217EPSS

Web

CVE•added 2023/03/23 9:31 a.m.•50 views

CVE-2023-1592

CVE-2023-1592 affects SourceCodester Automatic Question Paper Generator System 1.0. The vulnerability is an SQL injection in the file admin/courses/view_class.php of the GET Parameter Handler, caused by unsafely handling the id argument. Exploitation can be remote, with high potential impact to c...

9.8CVSS7.5AI score0.00217EPSS

Web

CVE•added 2023/03/17 6:23 a.m.•48 views

CVE-2023-1441

CVE-2023-1441 affects SourceCodester Automatic Question Paper Generator System 1.0, impacting the GET Parameter Handler in admin/courses/view_course.php. The root cause is a vulnerability in the id parameter that enables SQL injection, allowing remote exploitation without user interaction. Multip...

9.8CVSS8.3AI score0.00306EPSS

Web

CVE•added 2023/03/23 10:0 a.m.•47 views

CVE-2023-1593

SourceCodester Automatic Question Paper Generator System 1.0 is vulnerable to cross-site scripting via the description parameter in the file/classes/Master.php?f=save_class endpoint. The issue arises from improper handling of the description argument, enabling remote attackers to inject scripts. ...

6.1CVSS4.8AI score0.00185EPSS

Web

CVE•added 2023/03/27 9:0 p.m.•43 views

CVE-2023-1666

SourceCodester Automatic Question Paper Generator System 1.0 has a SQL injection vulnerability in the GET Parameter Handler, specifically in users/classes/view_class.php where manipulating the id parameter allows remote exploitation. The issue affects the view_class.php code path and is described...

9.8CVSS8.4AI score0.00297EPSS

Web

CVE•added 2023/03/17 6:21 a.m.•37 views

CVE-2023-1440

CVE-2023-1440 affects SourceCodester Automatic Question Paper Generator System 1.0, specifically the GET Parameter Handler in the file users/user/manage_user.php. The vulnerability arises from manipulation of the id argument, resulting in SQL injection. It can be exploited remotely, and public di...

8.8CVSS7.8AI score0.00306EPSS

Web