Vulnerabilities > Schools Alert Management Script Project > Schools Alert Management Script > High

DATE	CVE	VULNERABILITY TITLE	RISK
2018-06-08	CVE-2018-12054	Path Traversal vulnerability in Schools Alert Management Script Project Schools Alert Management Script Arbitrary File Read exists in PHP Scripts Mall Schools Alert Management Script via the f parameter in img.php, aka absolute path traversal. network low complexity schools-alert-management-script-project CWE-22	7.5
2018-06-08	CVE-2018-12053	Path Traversal vulnerability in Schools Alert Management Script Project Schools Alert Management Script Arbitrary File Deletion exists in PHP Scripts Mall Schools Alert Management Script via the img parameter in delete_img.php by using directory traversal. network low complexity schools-alert-management-script-project CWE-22	7.5
2018-02-12	CVE-2018-6860	Unrestricted Upload of File with Dangerous Type vulnerability in Schools Alert Management Script Project Schools Alert Management Script 2.0.2 Arbitrary File Upload and Remote Code Execution exist in PHP Scripts Mall Schools Alert Management Script 2.0.2 via a profile picture. network low complexity schools-alert-management-script-project CWE-434	8.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.