RSS   Vulnerabilities for
'School attendance monitoring system'
   RSS

2019-03-21
 
CVE-2018-18798

CWE-89
 

 
Attendance Monitoring System 1.0 has SQL Injection via the 'id' parameter to student/index.php?view=view, event/index.php?view=view, and user/index.php?view=view.

 
2018-11-16
 
CVE-2018-18799

CWE-352
 

 
School Attendance Monitoring System 1.0 has CSRF via event/controller.php?action=photos.

 
 
CVE-2018-18797

CWE-352
 

 
School Attendance Monitoring System 1.0 has CSRF via /user/user/edit.php.

 


Copyright 2024, cxsecurity.com

 

Back to Top