Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Online_student_admission_system
(Online_student_admission_system_project)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 4 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2021-10-26 | CVE-2021-37371 | Online Student Admission System 1.0 is affected by an unauthenticated SQL injection bypass vulnerability in /admin/login.php. | Online_student_admission_system | 9.8 | ||
| 2021-10-26 | CVE-2021-37372 | Online Student Admission System 1.0 is affected by an insecure file upload vulnerability. A low privileged user can upload malicious PHP files by updating their profile image to gain remote code execution. | Online_student_admission_system | 8.8 | ||
| 2022-08-05 | CVE-2022-2681 | A vulnerability classified as problematic was found in SourceCodester Online Student Admission System. Affected by this vulnerability is an unknown functionality of the file edit-profile.php of the component Student User Page. The manipulation with the input <script>alert(/xss/)</script> leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-205669 was assigned to this vulnerability. | Online_student_admission_system | 6.1 | ||
| 2023-02-22 | CVE-2022-48149 | Online Student Admission System in PHP Free Source Code 1.0 was discovered to contain a SQL injection vulnerability via the username parameter. | Online_student_admission_system | 9.8 |