Vulnerabilities > Online Student Enrollment System Project

DATE CVE VULNERABILITY TITLE RISK
2023-01-13 CVE-2022-46502 SQL Injection vulnerability in Online Student Enrollment System Project Online Student Enrollment System 1.0
Online Student Enrollment System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter at /student_enrollment/admin/login.php.
network
low complexity
online-student-enrollment-system-project CWE-89
critical
9.8
2023-01-12 CVE-2022-46503 Cross-site Scripting vulnerability in Online Student Enrollment System Project Online Student Enrollment System 1.0
A cross-site scripting (XSS) vulnerability in the component /admin/register.php of Online Student Enrollment System v1.0 allows attackers to execute arbitrary web scripts via a crafted payload injected into the name parameter.
5.4