Vulnerabilities > Advanced School Management System Project
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-07-28 | CVE-2022-34580 | Cross-site Scripting vulnerability in Advanced School Management System Project Advanced School Management System 1.0 Advanced School Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the address parameter at ip/school/index.php. | 4.8 |
2022-07-27 | CVE-2022-34594 | Cross-site Scripting vulnerability in Advanced School Management System Project Advanced School Management System 1.0 Advanced School Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component ip/school/moudel/update_subject.php. | 4.8 |
2022-07-20 | CVE-2022-34586 | SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0 itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via the grade parameter at /school/view/student_grade_wise.php. | 8.8 |
2022-07-20 | CVE-2022-34588 | SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0 itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via the grade parameter at /school/view/timetable_insert_form.php. | 8.8 |
2022-06-15 | CVE-2022-32370 | SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0 itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_classroom.php?id=. | 7.2 |
2022-06-15 | CVE-2022-32371 | SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0 itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_teacher.php?id=. | 7.2 |
2022-06-15 | CVE-2022-32372 | SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0 itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_subject.php?id=. | 7.2 |
2022-06-15 | CVE-2022-32368 | SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0 itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_grade.php?id=. | 7.2 |
2022-06-15 | CVE-2022-32373 | SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0 itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_exam.php?id=. | 7.2 |
2022-06-15 | CVE-2022-32374 | SQL Injection vulnerability in Advanced School Management System Project Advanced School Management System 1.0 itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_subject_routing.php?id=. | 7.2 |