Vulnerabilities > School Attendance Monitoring System Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-21 | CVE-2018-18798 | SQL Injection vulnerability in School Attendance Monitoring System Project School Attendance Monitoring System 1.0 Attendance Monitoring System 1.0 has SQL Injection via the 'id' parameter to student/index.php?view=view, event/index.php?view=view, and user/index.php?view=view. | 9.8 |
| 2018-11-16 | CVE-2018-18799 | Cross-Site Request Forgery (CSRF) vulnerability in School Attendance Monitoring System Project School Attendance Monitoring System 1.0 School Attendance Monitoring System 1.0 has CSRF via event/controller.php?action=photos. | 8.8 |
| 2018-11-16 | CVE-2018-18797 | Cross-Site Request Forgery (CSRF) vulnerability in School Attendance Monitoring System Project School Attendance Monitoring System 1.0 School Attendance Monitoring System 1.0 has CSRF via /user/user/edit.php. | 8.8 |