Vulnerabilities > Online Grading System Project

DATE CVE VULNERABILITY TITLE RISK
2022-12-16 CVE-2021-31650 SQL Injection vulnerability in Online Grading System Project Online Grading System 1.0
A SQL injection vulnerability in Sourcecodester Online Grading System 1.0 allows remote attackers to execute arbitrary SQL commands via the uname parameter.
network
low complexity
online-grading-system-project CWE-89
critical
 9.8
9.8
2019-10-23 CVE-2019-18344 SQL Injection vulnerability in Online Grading System Project Online Grading System 1.0
Sourcecodester Online Grading System 1.0 is vulnerable to unauthenticated SQL injection and can allow remote attackers to execute arbitrary SQL commands via the student, instructor, department, room, class, or user page (id or classid parameter).
network
low complexity
online-grading-system-project CWE-89
critical
 9.8
9.8
2019-10-23 CVE-2019-18280 Cross-Site Request Forgery (CSRF) vulnerability in Online Grading System Project Online Grading System 1.0
Sourcecodester Online Grading System 1.0 is affected by a Cross Site Request Forgery vulnerability due to a lack of CSRF protection.
network
low complexity
online-grading-system-project CWE-352
8.8
8.8