5 matches found
CVE-2024-10736
CVE-2024-10736 affects Codezips Free Exam Hall Seating Management System 1.0. The vulnerability is in /student.php via the email parameter, enabling SQL injection. Attack can be remote; exploit has been disclosed publicly. Impact is substantial (data exposure/integrity/availability). According to...
CVE-2024-11661
The CVE-2024-11661 entry concerns Codezips Free Exam Hall Seating Management System 1.0, specifically the Profile Image Handler's profile.php. The vulnerability is triggered by manipulating the image parameter, leading to unrestricted file upload. It is described as exploitable remotely, with the...
CVE-2024-10737
CVE-2024-10737 affects Codezips Free Exam Hall Seating Management System 1.0, with a SQL injection in an unknown function of /teacher.php triggered by the email parameter. Remote exploitation is possible; exploit has been disclosed. Documented impacts include confidentialty, integrity, and availa...
CVE-2024-10507
CVE-2024-10507 affects Codezips Free Exam Hall Seating Management System 1.0. The issue exists in the /login.php file where manipulating the email parameter yields SQL injection. Exploitation is remote and the vulnerability has been publicly disclosed. Multiple sources (NVD, Red Hat, CVE listing,...
CVE-2024-10766
Codezips Free Exam Hall Seating Management System 1.0 contains a vulnerability in the handling of the image parameter in /pages/save_user.php, where manipulation of the image argument leads to unrestricted file upload. This CVE is described as critical and can be exploited remotely; multiple sour...