Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
school management system project school management system 1.0 vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-3060
A vulnerability has been found in code-projects Agro-School Management System 1.0 and classified as problematic. This vulnerability affects the function doAddQuestion of the file btn_functions.php. The manipulation of the argument Question leads to cross site scripting. The attac...
Agro-school Management System Project Agro-school Management System 1.0
9.8
CVSSv3
CVE-2023-3061
A vulnerability was found in code-projects Agro-School Management System 1.0 and classified as critical. This issue affects some unknown processing of the file btn_functions.php of the component Attachment Image Handler. The manipulation leads to unrestricted upload. The attack m...
Agro-school Management System Project Agro-school Management System 1.0
9.8
CVSSv3
CVE-2023-3062
A vulnerability was found in code-projects Agro-School Management System 1.0. It has been classified as critical. Affected is an unknown function of the file index.php. The manipulation of the argument password leads to sql injection. It is possible to launch the attack remotely....
Agro-school Management System Project Agro-school Management System 1.0
9.8
CVSSv3
CVE-2018-18793
School Event Management System 1.0 allows Arbitrary File Upload via event/controller.php?action=photos.
School Event Management System Project School Event Management System 1.0
1 EDB exploit
8.8
CVSSv3
CVE-2018-18794
School Event Management System 1.0 allows CSRF via user/controller.php?action=edit.
School Event Management System Project School Event Management System 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-18795
School Event Management System 1.0 has SQL Injection via the student/index.php or event/index.php id parameter.
School Event Management System Project School Event Management System 1.0
1 EDB exploit
8.8
CVSSv3
CVE-2022-34588
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via the grade parameter at /school/view/timetable_insert_form.php.
Advanced School Management System Project Advanced School Management System 1.0
7.2
CVSSv3
CVE-2022-32373
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_exam.php?id=.
Advanced School Management System Project Advanced School Management System 1.0
7.2
CVSSv3
CVE-2022-32374
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_subject_routing.php?id=.
Advanced School Management System Project Advanced School Management System 1.0
7.2
CVSSv3
CVE-2022-32375
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_timetable.php?id=.
Advanced School Management System Project Advanced School Management System 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »