Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
college management system project college management system 1.0 vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2022-30404
College Management System v1.0 is vulnerable to SQL Injection via /College_Management_System/admin/display-teacher.php?teacher_id=.
College Management System Project College Management System 1.0
9.8
CVSSv3
CVE-2020-25409
Projectsworlds College Management System Php 1.0 is vulnerable to SQL injection issues over multiple parameters.
College Management System Project College Management System 1.0
8.8
CVSSv3
CVE-2022-32420
College Management System v1.0 exists to contain a remote code execution (RCE) vulnerability via /College/admin/teacher.php. This vulnerability is exploited via a crafted PHP file.
College Management System Project College Management System 1.0
8.8
CVSSv3
CVE-2022-28079
College Management System v1.0 exists to contain a SQL injection vulnerability via the course_code parameter.
College Management System Project College Management System 1.0
7.2
CVSSv3
CVE-2022-39179
College Management System v1.0 - Authenticated remote code execution. An admin user (the authentication can be bypassed using SQL Injection that mentioned in my other report) can upload .php file that contains malicious code via student.php file.
College Management System Project College Management System 1.0
6.5
CVSSv3
CVE-2020-25408
A Cross-Site Request Forgery (CSRF) vulnerability exists in ProjectWorlds College Management System Php 1.0 that allows a remote malicious user to modify, delete, or make a new entry of the student, faculty, teacher, subject, scores, location, and article data.
College Management System Project College Management System 1.0
9.8
CVSSv3
CVE-2022-39180
College Management System v1.0 - SQL Injection (SQLi). By inserting SQL commands to the username and password fields in the login.php page
College Management System Project College Management System 1.0
9.8
CVSSv3
CVE-2020-26051
College Management System Php 1.0 suffers from SQL injection vulnerabilities in the index.php page from POST parameters 'unametxt' and 'pwdtxt', which are not filtered before passing a SQL query.
College Management System Project College Management System 1.0
5.4
CVSSv3
CVE-2022-1075
A vulnerability was found in College Website Management System 1.0 and classified as problematic. Affected by this issue is the file /cwms/classes/Master.php?f=save_contact of the component Contact Handler. The manipulation leads to persistent cross site scripting. The attack may...
College Website Management System Project College Website Management System 1.0
9.8
CVSSv3
CVE-2022-1078
A vulnerability was found in SourceCodester College Website Management System 1.0. It has been classified as critical. Affected is the file /cwms/admin/?page=articles/view_article/. The manipulation of the argument id with the input ' and (select * from(select(sleep(10)))Avx...
College Website Management System Project College Website Management System 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »