RSS   Vulnerabilities for 'College management system'   RSS

2022-07-01
 
CVE-2022-32420

NVD-CWE-noinfo
 

 
College Management System v1.0 was discovered to contain a remote code execution (RCE) vulnerability via /College/admin/teacher.php. This vulnerability is exploited via a crafted PHP file.

 
2022-05-05
 
CVE-2022-28079

CWE-89
 

 
College Management System v1.0 was discovered to contain a SQL injection vulnerability via the course_code parameter.

 
2021-05-24
 
CVE-2020-25408

CWE-352
 

 
A Cross-Site Request Forgery (CSRF) vulnerability exists in ProjectWorlds College Management System Php 1.0 that allows a remote attacker to modify, delete, or make a new entry of the student, faculty, teacher, subject, scores, location, and article data.

 
 
CVE-2020-25409

CWE-89
 

 
Projectsworlds College Management System Php 1.0 is vulnerable to SQL injection issues over multiple parameters.

 
2021-02-08
 
CVE-2020-26051

CWE-89
 

 
College Management System Php 1.0 suffers from SQL injection vulnerabilities in the index.php page from POST parameters 'unametxt' and 'pwdtxt', which are not filtered before passing a SQL query.

 


Copyright 2024, cxsecurity.com

 

Back to Top