Security Vulnerabilities - CVEs Published In August 2024
School Management System commit bae5aa was discovered to contain a SQL injection vulnerability via the medium parameter at unitmarks.php.
CVSS Score
9.8
EPSS Score
0.002
Published
2024-08-20
School Management System commit bae5aa was discovered to contain a SQL injection vulnerability via the medium parameter at dtmarks.php.
CVSS Score
9.8
EPSS Score
0.002
Published
2024-08-20
School Management System commit bae5aa was discovered to contain a SQL injection vulnerability via the medium parameter at attendance.php.
CVSS Score
9.8
EPSS Score
0.002
Published
2024-08-20
School Management System commit bae5aa was discovered to contain a SQL injection vulnerability via the medium parameter at substaff.php.
CVSS Score
9.8
EPSS Score
0.002
Published
2024-08-20
A Cross-Site Request Forgery (CSRF) in the component edit_categorie.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.
CVSS Score
8.8
EPSS Score
0.001
Published
2024-08-20
A Cross-Site Request Forgery (CSRF) in the component add_product.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.
CVSS Score
8.8
EPSS Score
0.001
Published
2024-08-20
A Cross-Site Request Forgery (CSRF) in the component edit_product.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.
CVSS Score
8.0
EPSS Score
0.001
Published
2024-08-20
A Cross-Site Request Forgery (CSRF) in the component add_group.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.
CVSS Score
8.8
EPSS Score
0.001
Published
2024-08-20
A Cross-Site Request Forgery (CSRF) in the component edit_group.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.
CVSS Score
8.8
EPSS Score
0.001
Published
2024-08-20
A Cross-Site Request Forgery (CSRF) in the component delete_group.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.
CVSS Score
8.8
EPSS Score
0.001
Published
2024-08-20