Lucene search
+L
School Dormitory Management System ProjectSchool Dormitory Management System

7 matches found

CVE
CVE
added 2022/05/27 2:0 p.m.111 views

CVE-2022-30512

CVE-2022-30512 affects School Dormitory Management System 1.0. The connected data confirms a SQL injection in accounts/payment_history.php:31, enabling an attacker to read/modify data and potentially perform unauthorized admin operations. The issue is demonstrated by public Nuclei templates and a...

9.8CVSS9.8AI score0.09621EPSS
Web
CVE
CVE
added 2022/05/27 4:34 p.m.100 views

CVE-2022-30513

The CVE-2022-30513 entry applies to School Dormitory Management System 1.0, which contains an authenticated cross-site scripting (XSS) vulnerability in admin/inc/navigation.php:125. The Nuclei template confirms an authenticated XSS via that file location, enabling an attacker with prior access to...

6.1CVSS5.9AI score0.03345EPSS
Web
CVE
CVE
added 2022/05/27 3:4 p.m.98 views

CVE-2022-30514

The provided connected documents confirm a concrete vulnerability: School Dormitory Management System 1.0 has an authenticated cross-site scripting (XSS) flaw in admin/inc/navigation.php:126. Exploitation involves injecting arbitrary script that runs in an authenticated user’s browser, enabling c...

6.1CVSS5.9AI score0.03345EPSS
Web
CVE
CVE
added 2022/05/20 12:53 p.m.92 views

CVE-2022-30886

CVE-2022-30886 concerns a SQL injection in School Dormitory Management System v1.0, triggered via the month parameter in /dms/admin/reports/daily_collection_report.php. The vulnerability stems from unsanitized external input feeding a SQL query, enabling an attacker to potentially read/modify dat...

9.8CVSS9.8AI score0.02019EPSS
Web
CVE
CVE
added 2022/05/27 11:43 a.m.83 views

CVE-2022-30510

The CVE-2022-30510 entry affects the School Dormitory Management System 1.0. A concrete vulnerability is a SQL Injection in reports/daily_collection_report.php:59, caused by unsafely handling the GET parameter $_GET['month']. The Red Hat/NVD/CNVD and related records confirm this is an SQL injecti...

9.8CVSS9.8AI score0.03697EPSS
Web
CVE
CVE
added 2022/05/27 3:9 p.m.83 views

CVE-2022-30511

CVE-2022-30511 affects School Dormitory Management System 1.0 and is described as a SQL Injection via accounts/view_details.php:4. The vulnerability is demonstrated across multiple feeds (NVD, Red Hat, CNVD, CVE lists, and CNVD entries) as an injection in the accounts/view_details.php page, reach...

9.8CVSS9.8AI score0.03529EPSS
Web
CVE
CVE
added 2022/12/25 7:30 p.m.76 views

CVE-2022-4739

CVE-2022-4739 affects SourceCodester School Dormitory Management System v1.0, specifically the Admin Login component. The vulnerability enables SQL injection via an unknown function in Admin Login, with remote exploitation implied. Several connected sources corroborate a critical risk with impact...

9.8CVSS8.9AI score0.00483EPSS