Code-Projects: Security Vulnerabilities
An arbitrary file upload vulnerability in the Add Student's Profile Picture function of Student Enrollment In PHP v1.0 allows attackers to execute arbitrary code via uploading a crafted PHP file.
CVSS Score
9.8
EPSS Score
0.008
Published
2024-03-13
Code-projects Scholars Tracking System 1.0 is vulnerable to SQL Injection under Eligibility Information Update.
CVSS Score
9.8
EPSS Score
0.003
Published
2024-03-12
SQL Injection vulnerability in Code-projects.org Scholars Tracking System 1.0 allows attackers to run arbitrary code via login.php.
CVSS Score
7.8
EPSS Score
0.003
Published
2024-03-12
SQL Injection vulnerability in Code-projects Scholars Tracking System 1.0 allows attackers to run arbitrary code via Personal Information Update information.
CVSS Score
9.8
EPSS Score
0.006
Published
2024-03-12
Cross Site Scripting (XSS) vulnerability in Code-projects Scholars Tracking System 1.0 allows attackers to run arbitrary code via the News Feed.
CVSS Score
5.4
EPSS Score
0.003
Published
2024-03-12
Cross Site Scripting (XSS) vulnerability in Code-Projects Exam Form Submission 1.0 allows attackers to run arbitrary code via "Subject Name" and "Subject Code" section.
CVSS Score
6.1
EPSS Score
0.004
Published
2024-03-12
Cross Site Scripting (XSS) vulnerability in Manage Fastrack Subjects in Code-Projects Exam Form Submission 1.0 allows attackers to run arbitrary code via the "Subject Name" and "Subject Code" Section.
CVSS Score
6.1
EPSS Score
0.003
Published
2024-03-12
code-projects.org Online Job Portal 1.0 is vulnerable to SQL Injection via the Username parameter for "Employer."
CVSS Score
9.8
EPSS Score
0.006
Published
2024-03-07
code-projects.org Online Job Portal 1.0 is vulnerable to SQL Injection via /Employer/DeleteJob.php?JobId=1.
CVSS Score
5.5
EPSS Score
0.003
Published
2024-03-07
Student Enrollment In PHP v1.0 was discovered to contain a SQL injection vulnerability via the Login function.
CVSS Score
9.8
EPSS Score
0.006
Published
2024-03-07