Faculty Evaluation System
CVEs (8)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-33440 | 0.10 | — | 0.90 | May 26, 2023 | Sourcecodester Faculty Evaluation System v1.0 is vulnerable to arbitrary code execution via /eval/ajax.php?action=save_user. | |||
| CVE-2023-33439 | 0.03 | — | 0.34 | May 26, 2023 | Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/manage_task.php?id=. | |||
| CVE-2023-33569 | 0.00 | — | 0.00 | Jun 6, 2023 | Sourcecodester Faculty Evaluation System v1.0 is vulnerable to arbitrary code execution via ip/eval/ajax.php?action=update_user. | |||
| CVE-2023-31844 | 0.00 | — | 0.00 | May 15, 2023 | Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/manage_subject.php?id=. | |||
| CVE-2023-31842 | 0.00 | — | 0.00 | May 15, 2023 | Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/index.php?page=edit_faculty&id=. | |||
| CVE-2023-31843 | 0.00 | — | 0.00 | May 15, 2023 | Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/view_faculty.php?id=. | |||
| CVE-2023-31845 | 0.00 | — | 0.00 | May 15, 2023 | Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/manage_class.php?id=. | |||
| CVE-2023-2367 | 0.00 | — | 0.00 | Apr 28, 2023 | A vulnerability was found in SourceCodester Faculty Evaluation System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/manage_academic.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack… |
- CVE-2023-33440May 26, 2023risk 0.10cvss —epss 0.90
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to arbitrary code execution via /eval/ajax.php?action=save_user.
- CVE-2023-33439May 26, 2023risk 0.03cvss —epss 0.34
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/manage_task.php?id=.
- CVE-2023-33569Jun 6, 2023risk 0.00cvss —epss 0.00
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to arbitrary code execution via ip/eval/ajax.php?action=update_user.
- CVE-2023-31844May 15, 2023risk 0.00cvss —epss 0.00
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/manage_subject.php?id=.
- CVE-2023-31842May 15, 2023risk 0.00cvss —epss 0.00
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/index.php?page=edit_faculty&id=.
- CVE-2023-31843May 15, 2023risk 0.00cvss —epss 0.00
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/view_faculty.php?id=.
- CVE-2023-31845May 15, 2023risk 0.00cvss —epss 0.00
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/manage_class.php?id=.
- CVE-2023-2367Apr 28, 2023risk 0.00cvss —epss 0.00
A vulnerability was found in SourceCodester Faculty Evaluation System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/manage_academic.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack…