Web-based Student Clearance System Security Vulnerabilities and Issues — Web-based Student Clearance System CVE List

Web-based Student Clearance System ProjectWeb-based Student Clearance System

9 matches found

CVE•added 2022/11/28 12:0 a.m.•62 views

CVE-2022-45224

CVE-2022-45224 is an XSS vulnerability affecting the Web-Based Student Clearance System v1.0, with the flaw in Admin/add-admin.php where a crafted payload in the txtfullname parameter can execute arbitrary scripts/HTML. The connected sources confirm the issue but do not provide exploit details or...

4.8CVSS5AI score0.00257EPSS

Web

CVE•added 2022/10/08 12:0 a.m.•61 views

CVE-2022-3434

CVE-2022-3434 affects the SourceCodester Web-Based Student Clearance System. The vulnerability resides in the prepare function of /Admin/add-student.php, enabling cross-site scripting. The issue can be exploited remotely and the exploit has been disclosed publicly. Multiple sources corroborate th...

5.4CVSS4.7AI score0.01272EPSS

CVE•added 2022/10/09 12:0 a.m.•58 views

CVE-2022-3436

The CVE-2022-3436 entry concerns SourceCodester Web-Based Student Clearance System 1.0. Affected functionality is the edit-photo.php in the Photo Handler, where lack of input validation enables unrestricted file uploads. This allows remote attackers to upload arbitrary files, with the impact desc...

7.5CVSS6.8AI score0.00171EPSS

Web

CVE•added 2022/10/07 12:0 a.m.•54 views

CVE-2022-3414

CVE-2022-3414 affects SourceCodester Web-Based Student Clearance System. The vulnerability resides in the POST Parameter Handler within /Admin/login.php, where manipulation of the txtusername argument enables SQL injection. It is exploitable remotely, and public exploit information has been discl...

9.8CVSS7.7AI score0.00243EPSS

Web

CVE•added 2022/10/28 12:0 a.m.•54 views

CVE-2022-3733

SourceCodester Web-Based Student Clearance System is affected. The vulnerability is in Admin/edit-admin.php where manipulating the id parameter triggers a SQL injection. It can be exploited remotely and publicly disclosed; no remediation details are provided in the supplied documents.

8.8CVSS7.2AI score0.00243EPSS

Web

CVE•added 2022/11/28 12:0 a.m.•49 views

CVE-2022-45223

CVE-2022-45223 applies to Web-Based Student Clearance System v1.0, with a documented cross-site scripting (XSS) vulnerability in the /Admin/add-student.php endpoint. The issue allows injection of arbitrary scripts/HTML through the txtfullname parameter, as described across multiple sources. Vulne...

4.8CVSS5AI score0.00369EPSS

Web

CVE•added 2022/11/28 12:0 a.m.•44 views

CVE-2022-45221

Summary : CVE-2022-45221 affects Web-Based Student Clearance System v1.0, with a cross-site scripting (XSS) vulnerability in changepassword.php. The issue allows insertion of arbitrary web scripts/HTML via the txtnew_password parameter, potentially leading to user interaction-based exploitation. ...

4.8CVSS5AI score0.00257EPSS

CVE•added 2022/11/01 12:0 a.m.•43 views

CVE-2022-43078

CVE-2022-43078 affects Web-Based Student Clearance System v1.0. The vulnerability is a cross-site scripting (XSS) in the /admin/add-fee.php endpoint, exploitable via a crafted payload in the cmddept parameter. Impact understood in sources as enabling execution of arbitrary web scripts or HTML by ...

4.8CVSS5AI score0.00369EPSS

Web

CVE•added 2022/11/01 12:0 a.m.•42 views

CVE-2022-43076

The vulnerability CVE-2022-43076 affects Web-Based Student Clearance System v1.0. A cross-site scripting (XSS) flaw exists in the /admin/edit-admin.php endpoint, exploitable by injecting crafted payloads into the txtemail parameter to execute arbitrary web scripts/HTML. The provided references co...

4.8CVSS5AI score0.00369EPSS

Web