Show filters
3 Total Results
Displaying 1-3 of 3
Sort by:
Attacker Value
Unknown

CVE-2018-18798

Disclosure Date: March 21, 2019 (last updated November 27, 2024)
Attendance Monitoring System 1.0 has SQL Injection via the 'id' parameter to student/index.php?view=view, event/index.php?view=view, and user/index.php?view=view.
0
0
Attacker Value
Unknown

CVE-2018-18799

Disclosure Date: November 16, 2018 (last updated November 27, 2024)
School Attendance Monitoring System 1.0 has CSRF via event/controller.php?action=photos.
0
0
Attacker Value
Unknown

CVE-2018-18797

Disclosure Date: November 16, 2018 (last updated November 27, 2024)
School Attendance Monitoring System 1.0 has CSRF via /user/user/edit.php.
0
0