Kabir-m-alhasan

Student Management System

5 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2024-5047

Exploit
  • EPSS 0.25%
  • Veröffentlicht 17.05.2024 14:15:21
  • Zuletzt bearbeitet 10.02.2025 14:01:26

A vulnerability classified as critical has been found in SourceCodester Student Management System 1.0. Affected is an unknown function of the file /student/controller.php. The manipulation of the argument photo leads to unrestricted upload. It is pos...

9.8

CVE-2023-3007

  • EPSS 0.12%
  • Veröffentlicht 31.05.2023 12:15:09
  • Zuletzt bearbeitet 22.04.2025 14:51:37

A vulnerability was found in ningzichun Student Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file resetPassword.php of the component Password Reset Handler. The manipulation of the ...

9.8

CVE-2023-3008

  • EPSS 0.18%
  • Veröffentlicht 31.05.2023 12:15:09
  • Zuletzt bearbeitet 22.04.2025 14:51:37

A vulnerability classified as critical has been found in ningzichun Student Management System 1.0. This affects an unknown part of the file login.php. The manipulation of the argument user/pass leads to sql injection. It is possible to initiate the a...

5.4

CVE-2021-33371

Exploit
  • EPSS 0.2%
  • Veröffentlicht 28.07.2022 00:15:08
  • Zuletzt bearbeitet 22.04.2025 14:51:37

A stored cross-site scripting (XSS) vulnerability in /nav_bar_action.php of Student Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Chat box.

9.8

CVE-2020-23935

Exploit
  • EPSS 31.46%
  • Veröffentlicht 20.08.2020 15:15:15
  • Zuletzt bearbeitet 22.04.2025 14:51:37

Kabir Alhasan Student Management System 1.0 is vulnerable to Authentication Bypass via "Username: admin'# && Password: (Write Something)".