Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
enrollment system project enrollment system 1.0 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-33584
Sourcecodester Enrollment System Project V1.0 is vulnerable to SQL Injection (SQLI) attacks, which allow an malicious user to manipulate the SQL queries executed by the application. The application fails to properly validate user-supplied input in the username and password fields...
Enrollment System Project Enrollment System 1.0
1 Github repository
9.8
CVSSv3
CVE-2022-46502
Online Student Enrollment System v1.0 exists to contain a SQL injection vulnerability via the username parameter at /student_enrollment/admin/login.php.
Online Student Enrollment System Project Online Student Enrollment System 1.0
5.4
CVSSv3
CVE-2022-46503
A cross-site scripting (XSS) vulnerability in the component /admin/register.php of Online Student Enrollment System v1.0 allows malicious users to execute arbitrary web scripts via a crafted payload injected into the name parameter.
Online Student Enrollment System Project Online Student Enrollment System 1.0
5.4
CVSSv3
CVE-2021-40577
A Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodester Online Enrollment Management System in PHP and PayPal Free Source Code 1.0 in the Add-Users page via the Name parameter.
Online Enrollment Management System Project Online Enrollment Management System 1.0
9.8
CVSSv3
CVE-2021-26201
The Login Panel of CASAP Automated Enrollment System 1.0 is vulnerable to SQL injection authentication bypass. An attacker can obtain access to the admin panel by injecting a SQL query in the username field of the login page.
Casap Automated Enrollment System Project Casap Automated Enrollment System 1.0
6.1
CVSSv3
CVE-2021-26227
Cross-site scripting (XSS) vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote malicious users to inject arbitrary web script or HTML via the student information parameters to edit_stud.php.
Casap Automated Enrollment System Project Casap Automated Enrollment System 1.0
9.8
CVSSv3
CVE-2021-26228
SQL injection vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote malicious users to execute arbitrary SQL statements, via the id parameter to edit_class1.php.
Casap Automated Enrollment System Project Casap Automated Enrollment System 1.0
9.8
CVSSv3
CVE-2021-26229
SQL injection vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote malicious users to execute arbitrary SQL statements, via the id parameter to edit_stud.php.
Casap Automated Enrollment System Project Casap Automated Enrollment System 1.0
6.1
CVSSv3
CVE-2021-26230
Cross-site scripting (XSS) vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote malicious users to inject arbitrary web script or HTML via the user information to save_user.php.
Casap Automated Enrollment System Project Casap Automated Enrollment System 1.0
6.5
CVSSv3
CVE-2021-40579
https://www.sourcecodester.com/ Online Enrollment Management System in PHP and PayPal Free Source Code 1.0 is affected by: Incorrect Access Control. The impact is: gain privileges (remote).
Online Enrollment Management System Project Online Enrollment Management System 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »