School Club Application System Project

School Club Application System

3 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2022-29359

Exploit
  • EPSS 0.77%
  • Veröffentlicht 25.05.2022 01:15:07
  • Zuletzt bearbeitet 21.11.2024 06:58:57

A stored cross-site scripting (XSS) vulnerability in /scas/?page=clubs/application_form&id=7 of School Club Application System v0.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the firstname parameter.

9.8

CVE-2022-1287

  • EPSS 0.34%
  • Veröffentlicht 09.04.2022 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:40:25

A vulnerability classified as critical was found in School Club Application System 1.0. This vulnerability affects a request to the file /scas/classes/Users.php?f=save_user. The manipulation with a POST request leads to privilege escalation. The atta...

6.1

CVE-2022-1288

  • EPSS 0.22%
  • Veröffentlicht 09.04.2022 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:40:25

A vulnerability, which was classified as problematic, has been found in School Club Application System 1.0. This issue affects access to /scas/admin/. The manipulation of the parameter page with the input %22%3E%3Cimg%20src=x%20onerror=alert(1)%3E le...