21 matches found
CVE-2024-5368
CVE-2024-5368 affects Kashipara College Management System 1.0. The vulnerability is a cross-site scripting flaw in an unknown function within delete_faculty.php, where manipulation of the id parameter enables an XSS attack. Exploitation is possible remotely and the exploit has been disclosed publ...
CVE-2024-5372
CVE-2024-5372 affects Kashipara College Management System 1.0. The vulnerability is in the file submit_extracurricular_activity.php, where manipulation of the activity_contact parameter enables cross-site scripting. Exploitation can be performed remotely, and multiple connected sources corroborat...
CVE-2024-5367
CVE-2024-5367 affects Kashipara College Management System 1.0. The vulnerability is a cross-site scripting flaw in the parameter id of the file each_extracurricula_activities.php, caused by improper handling of user-supplied input in that processing path. Reports state the attack can be initiated...
CVE-2024-5370
Summary (CVE-2024-5370): Kashipara College Management System 1.0 is affected. The vulnerability is a cross-site scripting (XSS) flaw in submit_enroll_staff.php where the class_name parameter can be manipulated to inject scripts. The issue may be exploitable remotely and has had public disclosure ...
CVE-2024-5373
CVE-2024-5373 affects Kashipara College Management System 1.0. The issue is a cross-site scripting vulnerability in submit_login.php where manipulation of the argument usertype enables XSS. The attack is potentially remote, and the exploit has been disclosed publicly. Connected sources consistent...
CVE-2024-5369
CVE-2024-5369 affects Kashipara College Management System 1.0. The vulnerability is in the file submit_admin.php, where manipulating the argument admin_name triggers cross-site scripting (XSS) . The attack is described as remotely exploitable and the exploit has been disclosed publicly (VDB-26628...
CVE-2024-5371
CVE-2024-5371 affects Kashipara College Management System 1.0, specifically the submit_enroll_student.php component. The root cause is manipulation of the class_name argument that enables cross-site scripting (XSS). Exploitation is possible remotely and the vulnerability has been disclosed public...
CVE-2024-5374
Kashipara College Management System 1.0 is affected by a cross-site scripting vulnerability in an unknown function of the file submit_new_faculty.php. Manipulating the address parameter enables remote exploitation, and public disclosure of the exploit is noted. The connected documents confirm the...
CVE-2024-5375
The CVE-2024-5375 entry concerns Kashipara College Management System 1.0, where an attacker can trigger cross-site scripting through an unknown function in submit_student.php. The vulnerability arises from manipulation of the address parameter, enabling remote exploitation. Public disclosure of t...
CVE-2024-5376
CVE-2024-5376 affects Kashipara College Management System 1.0. The vulnerability is a cross-site scripting flaw in the file view_each_faculty.php, caused by manipulation of the id parameter. The attack vector is remote, and the exploit has been disclosed publicly per the initial report. Connected...
CVE-2024-4804
The CVE-2024-4804 entry concerns Kashipara College Management System 1.0. Affected is unknown functionality in edit_user.php where manipulating the id argument causes a SQL injection. The attack can be launched remotely and an exploit has been disclosed publicly. Public documents do not specify a...
CVE-2024-4803
CVE-2024-4803 affects Kashipara College Management System 1.0. The vulnerability is in the submit_admin.php functionality where manipulating the phone parameter yields a SQL injection. It can be exploited remotely, and public disclosure is noted. Across sources, the issue is described consistentl...
CVE-2024-4807
CVE-2024-4807 affects Kashipara College Management System 1.0. The issue is a SQL injection in the delete_user.php handler via the id parameter; the attack can be initiated remotely and exploit information has been disclosed publicly. No remediation details are provided in the connected documents.
CVE-2024-4801
CVE-2024-4801 affects Kashipara College Management System 1.0. The vulnerability is a SQL injection in the address parameter of submit_new_faculty.php, exploitable remotely, with public disclosure of exploits. Multiple sources confirm the affected component path and vulnerability class, and refer...
CVE-2024-4799
CVE-2024-4799 affects Kashipara College Management System 1.0, exploiting a SQL injection in the file view_each_faculty.php via the id parameter. Attack can be initiated remotely and exploit has been publicly disclosed. Multiple connected sources confirm the vulnerable component and failure mode;...
CVE-2024-4800
Affected software: Kashipara College Management System 1.0. The vulnerability is in submit_student.php, where manipulation of the date_of_birth argument enables SQL injection. It can be exploited remotely and the exploit has been disclosed publicly. Several connected sources confirm the condition...
CVE-2024-4802
CVE-2024-4802 affects Kashipara College Management System 1.0. The vulnerability is in the file submit_extracurricular_activity.php and arises from manipulation of the activity_datetime parameter, causing a SQL injection. Exploitation can be remote and public exploits have been disclosed. Some so...
CVE-2024-4806
CVE-2024-4806 affects Kashipara College Management System 1.0. The vulnerability is due to SQL injection in unknown code path within the file each_extracurricula_activities.php, triggered by manipulating the parameter id. It is a remote attack surface, and the exploit has been publicly disclosed....
CVE-2024-4905
CVE-2024-4905 affects Kashipara College Management System 1.0. The vulnerability resides in an unknown function of the file view_students_each_detail.php where manipulation of the id argument enables SQL injection. Exploitation is described as remote and publicly disclosed, with VDB-264438 as the...
CVE-2024-4805
CVE-2024-4805 affects Kashipara College Management System 1.0, with a SQL injection flaw in the edit_faculty.php page caused by manipulation of the id parameter. The vulnerability is exploitable remotely, and public exploit information exists (VDB-263925). Multiple connected sources corroborate t...
CVE-2024-4808
CVE-2024-4808 affects Kashipara College Management System 1.0, specifically the delete_faculty.php script. The vulnerability stems from an injectable id parameter in the deletion function, enabling SQL injection. Descriptions consistently state remote exploitation is possible and the vulnerabilit...