VYPR

CVE-2023-49981

by Geraldoalcantara

CVEs (4)

  • CVE-2023-49548HigMar 5, 2024
    risk 0.57cvss 8.8epss 0.01

    Customer Support System v1 was discovered to contain a SQL injection vulnerability via the lastname parameter at /customer_support/ajax.php?action=save_user.

  • CVE-2023-49546HigMar 5, 2024
    risk 0.57cvss 8.8epss 0.01

    Customer Support System v1 was discovered to contain a SQL injection vulnerability via the email parameter at /customer_support/ajax.php.

  • CVE-2023-49981HigMar 21, 2024
    risk 0.49cvss 7.5epss 0.01

    A directory listing vulnerability in School Fees Management System v1.0 allows attackers to list directories and sensitive files within the application without requiring authorization.

  • CVE-2023-49968HigMar 5, 2024
    risk 0.47cvss 7.3epss 0.00

    Customer Support System v1 was discovered to contain a SQL injection vulnerability via the id parameter at /customer_support/manage_department.php.