Lucene search
K
JayeshOnline Exam System

4 matches found

CVE
CVE
added 2024/08/09 12:0 a.m.56 views

CVE-2024-40480

CVE-2024-40480 affects Kashipara Online Exam System v1.0. The vulnerability is a Broken Access Control in /admin/update.php and /admin/dashboard.php that allows remote unauthenticated attackers to view the admin dashboard and delete valid user accounts via direct URL access. The issue is confirme...

9.8CVSS7.1AI score0.00534EPSS
CVE
CVE
added 2024/08/09 12:0 a.m.53 views

CVE-2024-40478

Kashipara Online Exam System v1.0 is affected by a Stored Cross Site Scripting (XSS) vulnerability in the /admin/afeedback.php endpoint. The issue allows remote attackers to execute arbitrary code via the rname and email parameters, as described across multiple sources (CVE-2024-40478, NVD/other ...

5.4CVSS6.4AI score0.00604EPSS
Web
CVE
CVE
added 2024/08/09 12:0 a.m.42 views

CVE-2024-40479

Kashipara Online Exam System v1.0 is affected by a SQL injection vulnerability in /admin/quizquestion.php, exploitable via the eid parameter. The underlying issue allows remote attackers to execute arbitrary SQL commands. Documents do not provide a confirmed patch version; a PT Security advisory ...

8.1CVSS8.8AI score0.00797EPSS
Web
CVE
CVE
added 2026/01/12 12:0 a.m.15 views

CVE-2025-51567

CVE-2025-51567 affects Kashipara Online Exam System V1.0. The vulnerability is an SQL Injection in the /exam/user/profile.php page. The issue is triggered via POST parameters rname, rcollage, rnumber, rgender, and rpassword, allowing remote attackers to execute arbitrary SQL commands and potentia...

9.1CVSS8AI score0.00354EPSS
Web