Oretnom23

Simple Student Attendance System

14 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2024-6212

Exploit
  • EPSS 0.17%
  • Veröffentlicht 21.06.2024 00:15:10
  • Zuletzt bearbeitet 21.11.2024 09:49:12

A vulnerability was found in SourceCodester Simple Student Attendance System 1.0 and classified as problematic. Affected by this issue is the function get_student of the file student_form.php. The manipulation of the argument id leads to cross site s...

6.1

CVE-2024-25551

  • EPSS 0.09%
  • Veröffentlicht 03.03.2024 08:15:08
  • Zuletzt bearbeitet 16.04.2025 18:31:13

Cross Site Scripting (XSS) vulnerability in sourcecodester Simple Student Attendance System v1.0 allows attackers to execute arbitrary code via crafted GET request to web application URL.

9.8

CVE-2023-51801

Exploit
  • EPSS 7.2%
  • Veröffentlicht 29.02.2024 02:15:09
  • Zuletzt bearbeitet 16.12.2024 19:26:10

SQL Injection vulnerability in the Simple Student Attendance System v.1.0 allows a remote attacker to execute arbitrary code via a crafted payload to the id parameter in the student_form.php and the class_form.php pages.

6.1

CVE-2023-51802

Exploit
  • EPSS 0.27%
  • Veröffentlicht 29.02.2024 02:15:09
  • Zuletzt bearbeitet 16.12.2024 19:24:55

Cross Site Scripting (XSS) vulnerability in the Simple Student Attendance System v.1.0 allows a remote attacker to execute arbitrary code via a crafted payload to the page or class_month parameter in the /php-attendance/attendance_report component.

9.8

CVE-2024-1923

Exploit
  • EPSS 0.12%
  • Veröffentlicht 27.02.2024 16:15:46
  • Zuletzt bearbeitet 06.12.2024 20:00:46

A vulnerability was found in SourceCodester Simple Student Attendance System 1.0 and classified as critical. Affected by this issue is the function delete_class/delete_student of the file /ajax-api.php of the component List of Classes Page. The manip...

6.1

CVE-2024-1834

Exploit
  • EPSS 0.12%
  • Veröffentlicht 23.02.2024 20:15:52
  • Zuletzt bearbeitet 06.12.2024 19:59:24

A vulnerability was found in SourceCodester Simple Student Attendance System 1.0. It has been classified as problematic. This affects an unknown part of the file ?page=attendance&class_id=1. The manipulation of the argument class_date with the input ...

9.8

CVE-2023-7058

  • EPSS 0.22%
  • Veröffentlicht 22.12.2023 05:15:13
  • Zuletzt bearbeitet 21.11.2024 08:45:09

A vulnerability was found in SourceCodester Simple Student Attendance System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument page leads to path traversal: '../filedir...

9.8

CVE-2023-6771

  • EPSS 0.16%
  • Veröffentlicht 13.12.2023 19:15:08
  • Zuletzt bearbeitet 21.11.2024 08:44:31

A vulnerability, which was classified as critical, has been found in SourceCodester Simple Student Attendance System 1.0. This issue affects the function save_attendance of the file actions.class.php. The manipulation of the argument sid leads to sql...

9.8

CVE-2023-6658

  • EPSS 0.05%
  • Veröffentlicht 10.12.2023 23:15:07
  • Zuletzt bearbeitet 21.11.2024 08:44:18

A vulnerability classified as critical was found in SourceCodester Simple Student Attendance System 1.0. This vulnerability affects unknown code of the file ajax-api.php?action=save_attendance. The manipulation of the argument class_id leads to sql i...

9.8

CVE-2023-6657

Exploit
  • EPSS 0.05%
  • Veröffentlicht 10.12.2023 21:15:07
  • Zuletzt bearbeitet 21.11.2024 08:44:18

A vulnerability classified as critical has been found in SourceCodester Simple Student Attendance System 1.0. This affects an unknown part of the file /modals/student_form.php. The manipulation of the argument id leads to sql injection. The exploit h...