Vulnerabilities > Institutional Management Website Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-08 | CVE-2022-45526 | SQL Injection vulnerability in Institutional Management Website Project Institutional Management Website 1.0 SQL Injection vulnerability in Future-Depth Institutional Management Website (IMS) 1.0, allows attackers to execute arbitrary commands via the ad parameter to /admin_area/login_transfer.php. | 9.8 |
| 2023-02-08 | CVE-2022-45527 | Unrestricted Upload of File with Dangerous Type vulnerability in Institutional Management Website Project Institutional Management Website 1.0 File upload vulnerability in Future-Depth Institutional Management Website (IMS) 1.0, allows unauthorized attackers to directly upload malicious files to the courseimg directory. | 9.8 |