Janobe

School Event Management System

28 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2024-33994

  • EPSS 0.17%
  • Veröffentlicht 06.08.2024 13:15:55
  • Zuletzt bearbeitet 22.11.2024 19:18:42

Cross-Site Scripting (XSS) vulnerability in School Event Management System affecting version 1.0. An attacker could create a specially crafted URL and send it to a victim to obtain their session details via the 'view' parameter in '/event/index.php'.

6.1

CVE-2024-33993

  • EPSS 0.17%
  • Veröffentlicht 06.08.2024 13:15:55
  • Zuletzt bearbeitet 15.08.2024 16:59:06

Cross-Site Scripting (XSS) vulnerability in School Event Management System affecting version 1.0. An attacker could create a specially crafted URL and send it to a victim to obtain their session details via the 'view' parameter in /candidate/index.ph...

6.1

CVE-2024-33992

  • EPSS 0.17%
  • Veröffentlicht 06.08.2024 13:15:55
  • Zuletzt bearbeitet 15.08.2024 16:58:58

Cross-Site Scripting (XSS) vulnerability in School Event Management System affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through th...

6.1

CVE-2024-33991

  • EPSS 0.17%
  • Veröffentlicht 06.08.2024 13:15:55
  • Zuletzt bearbeitet 15.08.2024 16:58:42

Cross-Site Scripting (XSS) vulnerability in School Event Management System affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through th...

6.1

CVE-2024-33990

  • EPSS 0.29%
  • Veröffentlicht 06.08.2024 13:15:54
  • Zuletzt bearbeitet 15.08.2024 16:58:21

Cross-Site Scripting (XSS) vulnerability in School Event Management System affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted javascript payload to an authenticated user and partially take over their br...

6.1

CVE-2024-33989

  • EPSS 0.29%
  • Veröffentlicht 06.08.2024 13:15:54
  • Zuletzt bearbeitet 15.08.2024 16:58:03

Cross-Site Scripting (XSS) vulnerability in School Event Management System affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted javascript payload to an authenticated user and partially take over their br...

6.1

CVE-2024-33988

  • EPSS 0.09%
  • Veröffentlicht 06.08.2024 13:15:54
  • Zuletzt bearbeitet 15.08.2024 16:56:51

Cross-Site Scripting (XSS) vulnerability in School Attendance Monitoring System and School Event Management System affecting version 1.0. An attacker could create a specially crafted URL and send it to a victim to obtain details of their session cook...

6.1

CVE-2024-33987

  • EPSS 0.09%
  • Veröffentlicht 06.08.2024 13:15:54
  • Zuletzt bearbeitet 15.08.2024 16:57:00

Cross-Site Scripting (XSS) vulnerability in School Attendance Monitoring System and School Event Management System affecting version 1.0. An attacker could create a specially crafted URL and send it to a victim to obtain details of their session cook...

6.1

CVE-2024-33986

  • EPSS 0.09%
  • Veröffentlicht 06.08.2024 13:15:54
  • Zuletzt bearbeitet 15.08.2024 16:57:09

Cross-Site Scripting (XSS) vulnerability in School Attendance Monitoring System and School Event Management System affecting version 1.0. An attacker could create a specially crafted URL and send it to a victim to obtain details of their session cook...

6.1

CVE-2024-33985

  • EPSS 0.09%
  • Veröffentlicht 06.08.2024 13:15:53
  • Zuletzt bearbeitet 15.08.2024 16:57:29

Cross-Site Scripting (XSS) vulnerability in School Attendance Monitoring System and School Event Management System affecting version 1.0. An attacker could create a specially crafted URL and send it to a victim to obtain details of their session cook...