Lucene search
K
Simple E-learning System ProjectSimple E-learning System-

6 matches found

CVE
CVE
added 2022/08/08 12:25 p.m.68 views

CVE-2022-2699

SourceCodester Simple E-Learning System is affected by a SQL injection vulnerability in the file /claire_blake, exploiting the phoneNumber parameter. The issue can be triggered remotely and exploits have been disclosed publicly. Affected versions are not clearly specified in the provided document...

7.5CVSS7.2AI score0.00533EPSS
CVE
CVE
added 2022/08/05 10:45 a.m.66 views

CVE-2022-2665

SourceCodester Simple E-Learning System contains a SQL injection vulnerability in the classroom.php handling of the post_id parameter. The flaw allows remote exploitation and is documented as disclosed publicly (VDB-205615). Affected component is an unknown functionality of classroom.php; the spe...

8.8CVSS7.8AI score0.00494EPSS
CVE
CVE
added 2022/08/08 12:26 p.m.65 views

CVE-2022-2701

The CVE-2022-2701 entry concerns SourceCodester Simple E-Learning System. A cross-site scripting (XSS) vulnerability is triggered by manipulating the Bio parameter in the file /claire_blake, affecting unknown code paths. The attack is remote, and public exploits have been disclosed. Multiple conn...

6.1CVSS4.9AI score0.00439EPSS
CVE
CVE
added 2022/08/08 12:50 p.m.59 views

CVE-2022-2704

CVE-2022-2704 affects the SourceCodester Simple E-Learning System. The vulnerability is in the downloadFiles.php file where the value of the download parameter is not properly validated, allowing arbitrary file downloads and resulting in information disclosure. The issue can be exploited remotely...

7.5CVSS5.9AI score0.00656EPSS
CVE
CVE
added 2022/08/07 8:1 p.m.55 views

CVE-2022-2698

CVE-2022-2698 affects SourceCodester Simple E-Learning System, specifically the search.php functionality. The vulnerability is a SQL injection in the searchPost parameter that can be exploited remotely, with exploitation disclosed publicly. Multiple connected sources confirm the issue and classif...

9.8CVSS8.3AI score0.00613EPSS
CVE
CVE
added 2022/08/07 8:0 p.m.49 views

CVE-2022-2697

SourceCodester Simple E-Learning System is affected by a SQL injection in the comment_frame.php file, via the post_id parameter. The vulnerability arises from an unknown function and can be exploited remotely; the exploit has been disclosed publicly. The identifier VDB-205818 is associated with t...

7.5CVSS7.2AI score0.00512EPSS