Lucene search
K
Online Exam System ProjectOnline Exam System

8 matches found

CVE
CVE
added 2023/05/14 9:0 a.m.55 views

CVE-2023-2693

SourceCodester Online Exam System 1.0 contains a SQL injection in the POST Parameter Handler ( /mahasiswa/data ) where manipulation of columns[1][data] enables remote exploitation. The vulnerability impacts unknown functionality; affected component is the POST Parameter Handler, with a root cause...

9.8CVSS8.2AI score0.0082EPSS
Web
CVE
CVE
added 2023/05/17 6:0 p.m.55 views

CVE-2023-2770

CVE-2023-2770 fixes a SQL injection in SourceCodester Online Exam System 1.0. The vulnerable component is the file /kelasdosen/data (affected by the columns[1][data] parameter), with remote exploitation and potential impact to confidentiality, integrity, and availability as noted in multiple sour...

8.8CVSS7.9AI score0.00734EPSS
Web
CVE
CVE
added 2023/05/14 10:0 a.m.53 views

CVE-2023-2694

CVE-2023-2694 affects SourceCodester Online Exam System 1.0, specifically the POST Parameter Handler file /dosen/data. The vulnerability arises from improper handling of the columns[1][data] parameter, enabling SQL injection and remote exploitation. Public disclosures exist, and multiple trusted ...

9.8CVSS7.4AI score0.0082EPSS
Web
CVE
CVE
added 2023/05/17 6:31 p.m.53 views

CVE-2023-2771

CVE-2023-2771 affects SourceCodester Online Exam System 1.0. The vulnerability is a SQL injection in the processing of the file /jurusanmatkul/data, caused by manipulation of the argument columns[1][data]. The issue is exploitable remotely, and public exploitation details are available. Affected ...

8.8CVSS7.8AI score0.00734EPSS
Web
CVE
CVE
added 2023/05/11 6:0 a.m.50 views

CVE-2023-2642

CVE-2023-2642 is a SQL injection vulnerability affecting SourceCodester Online Exam System 1.0. The issue resides in the file adminpanel/admin/facebox_modal/updateCourse.php, specifically in the GET Parameter Handler where manipulating the id argument enables an SQL injection. The vulnerability c...

9.8CVSS8.3AI score0.00726EPSS
Web
CVE
CVE
added 2023/05/14 11:31 a.m.50 views

CVE-2023-2697

CVE-2023-2697 affects SourceCodester Online Exam System 1.0. The vulnerability resides in the POST Parameter Handler, specifically the /jurusan/data file and the argument columns[1][data], whose manipulation leads to SQL injection. It is exploitable remotely, and the exploit has been disclosed pu...

9.8CVSS8.3AI score0.0082EPSS
Web
CVE
CVE
added 2023/05/14 10:31 a.m.46 views

CVE-2023-2695

The CVE-2023-2695 entry describes a SQL injection in the SourceCodester Online Exam System 1.0, specifically in the POST Parameter Handler component, targeting the /kelas/data file via the columns[1][data] parameter. The underlying cause is manipulation of that parameter leading to SQL injection,...

9.8CVSS8.4AI score0.0082EPSS
Web
CVE
CVE
added 2023/05/14 11:0 a.m.46 views

CVE-2023-2696

CVE-2023-2696 affects SourceCodester Online Exam System 1.0. The vulnerability resides in the POST Parameter Handler, specifically its /matkul/data processing, where manipulating the argument columns[1][data] enables SQL injection. Several connected sources confirm remote exploitation and public ...

9.8CVSS8.3AI score0.0082EPSS
Web