Vulnerabilities > Advanced School Management System Project

DATE CVE VULNERABILITY TITLE RISK
2022-07-28 CVE-2022-34580 Cross-site Scripting vulnerability in Advanced School Management System Project Advanced School Management System 1.0
Advanced School Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the address parameter at ip/school/index.php.
4.8
2022-07-27 CVE-2022-34594 Cross-site Scripting vulnerability in Advanced School Management System Project Advanced School Management System 1.0
Advanced School Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component ip/school/moudel/update_subject.php.
4.8
2022-07-20 CVE-2022-34586 SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via the grade parameter at /school/view/student_grade_wise.php.
8.8
2022-07-20 CVE-2022-34588 SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via the grade parameter at /school/view/timetable_insert_form.php.
8.8
2022-06-15 CVE-2022-32370 SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_classroom.php?id=.
7.2
2022-06-15 CVE-2022-32371 SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_teacher.php?id=.
7.2
2022-06-15 CVE-2022-32372 SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_subject.php?id=.
7.2
2022-06-15 CVE-2022-32368 SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_grade.php?id=.
7.2
2022-06-15 CVE-2022-32373 SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_exam.php?id=.
7.2
2022-06-15 CVE-2022-32374 SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_subject_routing.php?id=.
7.2