Simple School Management System Security Vulnerabilities and Issues — Simple School Management System CVE List

Lucene search

Code-projectsSimple School Management System

9 matches found

CVE•added 2024/02/09 1:15 p.m.•83 views

CVE-2024-25304

Code-projects Simple School Managment System 1.0 allows SQL Injection via the 'apass' parameter at "School/index.php."

8.8CVSS9.1AI score0.00176EPSS

Web

CVE•added 2024/02/09 1:15 p.m.•79 views

CVE-2024-25305

Code-projects Simple School Managment System 1.0 allows Authentication Bypass via the username and password parameters at School/index.php.

8.8CVSS8.7AI score0.00067EPSS

Web

CVE•added 2024/02/09 1:15 p.m.•75 views

CVE-2024-25309

Code-projects Simple School Managment System 1.0 allows SQL Injection via the 'pass' parameter at School/teacher_login.php.

8.8CVSS9.1AI score0.00176EPSS

Web

CVE•added 2024/02/09 2:15 p.m.•67 views

CVE-2024-25310

Code-projects Simple School Managment System 1.0 allows SQL Injection via the 'id' parameter at "School/delete.php?id=5."

8.8CVSS9.1AI score0.00176EPSS

Web

CVE•added 2024/04/25 10:15 p.m.•49 views

CVE-2024-31610

File Upload vulnerability in the function for employees to upload avatars in Code-Projects Simple School Management System v1.0 allows attackers to run arbitrary code via upload of crafted file.

6.3CVSS7.3AI score0.00147EPSS

CVE•added 2024/02/09 1:15 p.m.•39 views

CVE-2024-25313

Code-projects Simple School Managment System 1.0 allows Authentication Bypass via the username and password parameters at School/teacher_login.php.

8.8CVSS8.7AI score0.00037EPSS

Web

CVE•added 2024/02/09 1:15 p.m.•38 views

CVE-2024-25312

Code-projects Simple School Managment System 1.0 allows SQL Injection via the 'id' parameter at "School/sub_delete.php?id=5."

8.8CVSS9.1AI score0.00176EPSS

Web

CVE•added 2024/02/09 1:15 p.m.•24 views

CVE-2024-25308

Code-projects Simple School Managment System 1.0 allows SQL Injection via the 'name' parameter at School/teacher_login.php.

8.8CVSS9.1AI score0.00176EPSS

Web

CVE•added 2024/02/09 1:15 p.m.•23 views

CVE-2024-25306

Code-projects Simple School Managment System 1.0 allows SQL Injection via the 'aname' parameter at "School/index.php".

8.8CVSS9.1AI score0.00176EPSS

Web