VYPR

School File Management System

by Campcodes

CVEs (6)

  • CVE-2025-14209HigDec 8, 2025
    risk 0.47cvss 7.3epss 0.00

    A weakness has been identified in Campcodes School File Management System 1.0. This impacts an unknown function of the file /update_query.php. This manipulation of the argument stud_id causes sql injection. The attack can be initiated remotely. The exploit has been made…

  • CVE-2025-13555HigNov 23, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was detected in Campcodes School File Management System 1.0. Affected is an unknown function of the file /index.php of the component Login. Performing a manipulation of the argument stud_no results in sql injection. The attack can be initiated remotely. The…

  • CVE-2025-15404MedJan 1, 2026
    risk 0.41cvss 6.3epss 0.00

    A security vulnerability has been detected in campcodes School File Management System 1.0. The affected element is an unknown function of the file /save_file.php. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The…

  • CVE-2025-12873MedNov 7, 2025
    risk 0.31cvss 4.7epss 0.00

    A security flaw has been discovered in Campcodes School File Management 1.0. This affects an unknown part of the file /admin/update_user.php. Performing manipulation of the argument user_id results in sql injection. It is possible to initiate the attack remotely. The exploit has…

  • CVE-2021-46824Jun 23, 2022
    risk 0.00cvss epss 0.01

    Cross Site Scripting (XSS) vulnerability in sourcecodester School File Management System 1.0 via the Lastname parameter to the Update Account form in student_profile.php.

  • CVE-2021-29055Jun 23, 2022
    risk 0.00cvss epss 0.01

    Cross Site Scripting (XSS) vulnerability in sourcecodester School File Management System 1.0 via the Firtstname parameter to the Update Account form in student_profile.php.