Online Grading System Security Vulnerabilities and Issues — Online Grading System CVE List

Lucene search

Online Grading System ProjectOnline Grading System

3 matches found

CVE•added 2019/10/23 3:15 p.m.•44 views

CVE-2019-18344

Sourcecodester Online Grading System 1.0 is vulnerable to unauthenticated SQL injection and can allow remote attackers to execute arbitrary SQL commands via the student, instructor, department, room, class, or user page (id or classid parameter).

9.8CVSS10AI score0.00617EPSS

CVE•added 2022/12/16 10:15 p.m.•42 views

CVE-2021-31650

A SQL injection vulnerability in Sourcecodester Online Grading System 1.0 allows remote attackers to execute arbitrary SQL commands via the uname parameter.

9.8CVSS9.9AI score0.00167EPSS

CVE•added 2019/10/23 2:15 p.m.•40 views

CVE-2019-18280

Sourcecodester Online Grading System 1.0 is affected by a Cross Site Request Forgery vulnerability due to a lack of CSRF protection. This could lead to an attacker tricking the administrator into executing arbitrary code via a crafted HTML page, as demonstrated by a Create User action at the admin/...

8.8CVSS8.5AI score0.00182EPSS