VYPR

Student Management System

by Itsourcecode

CVEs (211)

  • CVE-2025-14661HigDec 14, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in itsourcecode Student Managemen System 1.0. Affected by this issue is some unknown functionality of the file /advisers.php. Such manipulation of the argument sy leads to sql injection. The attack can be launched remotely. The exploit has been…

  • CVE-2025-14653HigDec 14, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in itsourcecode Student Management System 1.0. Impacted is an unknown function of the file /addrecord.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been publicly…

  • CVE-2025-14644HigDec 14, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in itsourcecode Student Management System 1.0. The impacted element is an unknown function of the file /update_subject.php. Executing manipulation of the argument ID can lead to sql injection. The attack can be executed remotely. The exploit has…

  • CVE-2025-14588HigDec 13, 2025
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in itsourcecode Student Management System 1.0. This vulnerability affects unknown code of the file /update_program.php. Performing manipulation of the argument ID results in sql injection. The attack is possible to be carried out remotely. The…

  • CVE-2025-14578HigDec 12, 2025
    risk 0.47cvss 7.3epss 0.00

    A weakness has been identified in itsourcecode Student Management System 1.0. The affected element is an unknown function of the file /update_account.php. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has…

  • CVE-2025-14337HigDec 9, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in itsourcecode Student Management System 1.0. This affects an unknown part of the file /new_grade.php. This manipulation of the argument grade causes sql injection. The attack can be initiated remotely. The exploit has been publicly disclosed and…

  • CVE-2025-14336HigDec 9, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in itsourcecode Student Management System 1.0. Affected by this issue is some unknown functionality of the file /promote.php. The manipulation of the argument sy results in sql injection. It is possible to launch the attack remotely. The exploit has…

  • CVE-2025-14335HigDec 9, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in itsourcecode Student Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /new_school_year.php. The manipulation of the argument sy leads to sql injection. It is possible to initiate the attack remotely.…

  • CVE-2025-14334HigDec 9, 2025
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in itsourcecode Student Management System 1.0. Affected is an unknown function of the file /new_adviser.php. Executing manipulation of the argument Name can lead to sql injection. The attack may be performed from remote. The exploit has been published and…

  • CVE-2025-14258HigDec 8, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in itsourcecode Student Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /newsubject.php. The manipulation of the argument sub leads to sql injection. The attack may be initiated remotely. The exploit…

  • CVE-2025-14257HigDec 8, 2025
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in itsourcecode Student Management System 1.0. Affected is an unknown function of the file /newrecord.php. Executing manipulation of the argument ID can lead to sql injection. The attack can be launched remotely. The exploit has been published and may be…

  • CVE-2025-14256HigDec 8, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was detected in itsourcecode Student Management System 1.0. This impacts an unknown function of the file /newcurriculm.php. Performing manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit is now public and…

  • CVE-2025-14226HigDec 8, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in itsourcecode Student Management System 1.0. This vulnerability affects unknown code of the file /edit_user.php. The manipulation of the argument fname leads to sql injection. The attack is possible to be carried out remotely. The exploit is…

  • CVE-2025-13257HigNov 17, 2025
    risk 0.47cvss 7.3epss 0.00

    A security vulnerability has been detected in itsourcecode Inventory Management System 1.0. The affected element is an unknown function of the file /admin/user/index.php?view=edit. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely.…

  • CVE-2025-13237HigNov 16, 2025
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in itsourcecode Inventory Management System 1.0. Affected is an unknown function of the file /LogSignModal.PHP. The manipulation of the argument U_USERNAME results in sql injection. The attack can be launched remotely. The exploit has been…

  • CVE-2025-13235HigNov 16, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in itsourcecode Inventory Management System 1.0. This affects an unknown function of the file /admin/login.php. Executing manipulation of the argument user_email can lead to sql injection. It is possible to launch the attack remotely. The exploit…

  • CVE-2025-13233HigNov 16, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in itsourcecode Inventory Management System 1.0. The affected element is an unknown function of the file /index.php?q=single-item. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit has…

  • CVE-2025-9793HigSep 1, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was detected in itsourcecode Apartment Management System 1.0. Impacted is an unknown function of the file /setting/admin.php of the component Setting Handler. Performing manipulation of the argument ddlBranch results in sql injection. The attack is possible to be…

  • CVE-2025-9792HigSep 1, 2025
    risk 0.47cvss 7.3epss 0.00

    A security vulnerability has been detected in itsourcecode Apartment Management System 1.0. This issue affects some unknown processing of the file /e_dashboard/e_all_info.php. Such manipulation of the argument mid leads to sql injection. The attack can be executed remotely. The…

  • CVE-2025-9767HigSep 1, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in itsourcecode Sports Management System 1.0. This affects an unknown function of the file /Admin/sporttype.php. Executing manipulation of the argument code can lead to sql injection. The attack can be executed remotely. The exploit has been…

Page 3 of 11