Ingenious School Management System Project: >> Ingenious School Management System Security Vulnerabilities
/view/friend_profile.php in Ingenious School Management System 2.3.0 is vulnerable to Boolean-based and Time-based SQL injection in the 'friend_index' parameter of a GET request.
CVSS Score
9.8
EPSS Score
0.002
Published
2017-11-07
my_profile.php in Ingenious School Management System 2.3.0 allows a student or teacher to upload an arbitrary file.
CVSS Score
8.8
EPSS Score
0.033
Published
2017-10-29