Vulnerabilities > Advanced School Management System Project

DATE	CVE	VULNERABILITY TITLE	RISK
2022-07-28	CVE-2022-34580	Cross-site Scripting vulnerability in Advanced School Management System Project Advanced School Management System 1.0 Advanced School Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the address parameter at ip/school/index.php. network low complexity advanced-school-management-system-project CWE-79	4.8
2022-07-27	CVE-2022-34594	Cross-site Scripting vulnerability in Advanced School Management System Project Advanced School Management System 1.0 Advanced School Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component ip/school/moudel/update_subject.php. network low complexity advanced-school-management-system-project CWE-79	4.8
2022-07-20	CVE-2022-34586	SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0 itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via the grade parameter at /school/view/student_grade_wise.php. network low complexity advanced-school-management-system-project CWE-89	8.8
2022-07-20	CVE-2022-34588	SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0 itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via the grade parameter at /school/view/timetable_insert_form.php. network low complexity advanced-school-management-system-project CWE-89	8.8
2022-06-15	CVE-2022-32370	SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0 itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_classroom.php?id=. network low complexity advanced-school-management-system-project CWE-89	7.2
2022-06-15	CVE-2022-32371	SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0 itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_teacher.php?id=. network low complexity advanced-school-management-system-project CWE-89	7.2
2022-06-15	CVE-2022-32372	SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0 itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_subject.php?id=. network low complexity advanced-school-management-system-project CWE-89	7.2
2022-06-15	CVE-2022-32368	SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0 itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_grade.php?id=. network low complexity advanced-school-management-system-project CWE-89	7.2
2022-06-15	CVE-2022-32373	SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0 itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_exam.php?id=. network low complexity advanced-school-management-system-project CWE-89	7.2
2022-06-15	CVE-2022-32374	SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0 itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_subject_routing.php?id=. network low complexity advanced-school-management-system-project CWE-89	7.2