VYPR

Online Course Registration

by Sourcecodester

CVEs (2)

  • CVE-2020-36064CriJan 31, 2022
    risk 0.64cvss 9.8epss 0.01

    Online Course Registration v1.0 was discovered to contain hardcoded credentials in the source code which allows attackers access to the control panel if compromised.

  • CVE-2020-23828CriSep 15, 2020
    risk 0.64cvss 9.8epss 0.04

    A File Upload vulnerability in SourceCodester Online Course Registration v1.0 allows remote attackers to achieve Remote Code Execution (RCE) on the hosting webserver by uploading a crafted PHP web-shell that bypasses the image upload filters. An attack uses…