Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
college management system project college management system 1.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-39180
College Management System v1.0 - SQL Injection (SQLi). By inserting SQL commands to the username and password fields in the login.php page
College Management System Project College Management System 1.0
NA
CVE-2022-39179
College Management System v1.0 - Authenticated remote code execution. An admin user (the authentication can be bypassed using SQL Injection that mentioned in my other report) can upload .php file that contains malicious code via student.php file.
College Management System Project College Management System 1.0
6.8
CVSSv2
CVE-2022-32420
College Management System v1.0 exists to contain a remote code execution (RCE) vulnerability via /College/admin/teacher.php. This vulnerability is exploited via a crafted PHP file.
College Management System Project College Management System 1.0
6.5
CVSSv2
CVE-2022-30404
College Management System v1.0 is vulnerable to SQL Injection via /College_Management_System/admin/display-teacher.php?teacher_id=.
College Management System Project College Management System 1.0
6.5
CVSSv2
CVE-2022-28079
College Management System v1.0 exists to contain a SQL injection vulnerability via the course_code parameter.
College Management System Project College Management System 1.0
3.5
CVSSv2
CVE-2022-26615
A cross-site scripting (XSS) vulnerability in College Website Content Management System v1.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the User Profile Name text fields.
College Website Content Management System Project College Website Content Management System 1.0
7.5
CVSSv2
CVE-2022-1078
A vulnerability was found in SourceCodester College Website Management System 1.0. It has been classified as critical. Affected is the file /cwms/admin/?page=articles/view_article/. The manipulation of the argument id with the input ' and (select * from(select(sleep(10)))Avx...
College Website Management System Project College Website Management System 1.0
3.5
CVSSv2
CVE-2022-1075
A vulnerability was found in College Website Management System 1.0 and classified as problematic. Affected by this issue is the file /cwms/classes/Master.php?f=save_contact of the component Contact Handler. The manipulation leads to persistent cross site scripting. The attack may...
College Website Management System Project College Website Management System 1.0
4.3
CVSSv2
CVE-2020-25408
A Cross-Site Request Forgery (CSRF) vulnerability exists in ProjectWorlds College Management System Php 1.0 that allows a remote malicious user to modify, delete, or make a new entry of the student, faculty, teacher, subject, scores, location, and article data.
College Management System Project College Management System 1.0
7.5
CVSSv2
CVE-2020-25409
Projectsworlds College Management System Php 1.0 is vulnerable to SQL injection issues over multiple parameters.
College Management System Project College Management System 1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »