Show filters
49 Total Results
Displaying 11-20 of 49
Sort by:
Attacker Value
Unknown
CVE-2024-54919
Disclosure Date: December 09, 2024 (last updated December 21, 2024)
A Stored Cross Site Scripting (XSS ) was found in /teacher_avatar.php of kashipara E-learning Management System v1.0. This vulnerability allows remote attackers to execute arbitrary java script via the filename parameter.
0
Attacker Value
Unknown
CVE-2024-54937
Disclosure Date: December 09, 2024 (last updated December 21, 2024)
A Directory Listing issue was found in Kashipara E-Learning Management System v1.0, which allows remote attackers to access sensitive files and directories via /admin/assets.
0
Attacker Value
Unknown
CVE-2024-54936
Disclosure Date: December 09, 2024 (last updated December 21, 2024)
A Stored Cross-Site Scripting (XSS) vulnerability was found in /send_message.php of Kashipara E-learning Management System v1.0. This vulnerability allows remote attackers to execute arbitrary scripts via the my_message parameter.
0
Attacker Value
Unknown
CVE-2024-54929
Disclosure Date: December 09, 2024 (last updated December 21, 2024)
KASHIPARA E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_subject.php.
0
Attacker Value
Unknown
CVE-2024-50831
Disclosure Date: November 14, 2024 (last updated November 19, 2024)
A SQL Injection was found in /admin/admin_user.php in kashipara E-learning Management System Project 1.0 via the username and password parameters.
0
Attacker Value
Unknown
CVE-2024-50830
Disclosure Date: November 14, 2024 (last updated November 19, 2024)
A SQL Injection vulnerability was found in /admin/calendar_of_events.php in kashipara E-learning Management System Project 1.0 via the date_start, date_end, and title parameters.
0
Attacker Value
Unknown
CVE-2024-50829
Disclosure Date: November 14, 2024 (last updated November 19, 2024)
A SQL Injection vulnerability was found in /admin/edit_subject.php in kashipara E-learning Management System Project 1.0 via the unit parameter.
0
Attacker Value
Unknown
CVE-2024-50828
Disclosure Date: November 14, 2024 (last updated November 19, 2024)
A SQL Injection vulnerability was found in /admin/edit_department.php in kashipara E-learning Management System Project 1.0 via the d parameter.
0
Attacker Value
Unknown
CVE-2024-50827
Disclosure Date: November 14, 2024 (last updated November 19, 2024)
A SQL Injection vulnerability was found in /admin/add_subject.php in kashipara E-learning Management System Project 1.0 via the subject_code parameter.
0
Attacker Value
Unknown
CVE-2024-50826
Disclosure Date: November 14, 2024 (last updated November 19, 2024)
A SQL Injection vulnerability was found in /admin/add_content.php in kashipara E-learning Management System Project 1.0 via the title and content parameters.
0
