RSS   Vulnerabilities for
'Ingenious school management system'
   RSS

2017-11-07
 
CVE-2017-16561

CWE-89
 

 
/view/friend_profile.php in Ingenious School Management System 2.3.0 is vulnerable to Boolean-based and Time-based SQL injection in the 'friend_index' parameter of a GET request.

 
2017-10-29
 
CVE-2017-15957

CWE-434
 

 
my_profile.php in Ingenious School Management System 2.3.0 allows a student or teacher to upload an arbitrary file.

 


Copyright 2024, cxsecurity.com

 

Back to Top