Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
schools alert management script project schools alert management script - vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-12055
Multiple SQL Injections exist in PHP Scripts Mall Schools Alert Management Script via crafted POST data in contact_us.php, faq.php, about.php, photo_gallery.php, privacy.php, and so on.
Schools Alert Management Script Project Schools Alert Management Script -
1 EDB exploit
9.8
CVSSv3
CVE-2018-12052
SQL Injection exists in PHP Scripts Mall Schools Alert Management Script via the q Parameter in get_sec.php.
Schools Alert Management Script Project Schools Alert Management Script -
1 EDB exploit
7.5
CVSSv3
CVE-2018-12054
Arbitrary File Read exists in PHP Scripts Mall Schools Alert Management Script via the f parameter in img.php, aka absolute path traversal.
Schools Alert Management Script Project Schools Alert Management Script -
1 EDB exploit
9.8
CVSSv3
CVE-2018-12051
Arbitrary File Upload and Remote Code Execution exist in PHP Scripts Mall Schools Alert Management Script via $_FILE in /webmasterst/general.php, as demonstrated by a .php file with the image/jpeg content type.
Schools Alert Management Script Project Schools Alert Management Script -
7.5
CVSSv3
CVE-2018-12053
Arbitrary File Deletion exists in PHP Scripts Mall Schools Alert Management Script via the img parameter in delete_img.php by using directory traversal.
Schools Alert Management Script Project Schools Alert Management Script -
1 EDB exploit
9.8
CVSSv3
CVE-2018-6859
SQL Injection exists in PHP Scripts Mall Schools Alert Management Script 2.0.2 via the Login Parameter.
Schools Alert Management Script Project Schools Alert Management Script 2.0.2
8.8
CVSSv3
CVE-2018-6860
Arbitrary File Upload and Remote Code Execution exist in PHP Scripts Mall Schools Alert Management Script 2.0.2 via a profile picture.
Schools Alert Management Script Project Schools Alert Management Script 2.0.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started