Online Class and Exam Scheduling System
CVEs (11)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-44135 | 0.00 | — | 0.00 | Apr 24, 2025 | A vulnerability was found in code-projects Online Class and Exam Scheduling System 1.0 in /Scheduling/pages/profile_update.php. Manipulating the parameter username will cause SQL injection attacks. | |||
| CVE-2025-44134 | 0.00 | — | 0.00 | Apr 24, 2025 | A vulnerability was found in Code-Projects Online Class and Exam Scheduling System 1.0 in the file /Scheduling/pages/class_save.php. Manipulation of parameter class will lead to SQL injection attacks. | |||
| CVE-2025-29568 | 0.00 | — | 0.00 | Apr 24, 2025 | A vulnerability has been discovered in the code-projects Online Class and Exam Scheduling System 1.0. The issue affects some unknown features in the file /Scheduling/pages/class_sched.php. Manipulating the class parameter can lead to cross-site scripting (XSS). | |||
| CVE-2025-2393 | 0.00 | — | 0.00 | Mar 17, 2025 | A vulnerability, which was classified as critical, was found in code-projects Online Class and Exam Scheduling System 1.0. Affected is an unknown function of the file /pages/salut_del.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. | |||
| CVE-2025-2392 | 0.00 | — | 0.00 | Mar 17, 2025 | A vulnerability, which was classified as critical, has been found in code-projects Online Class and Exam Scheduling System 1.0. This issue affects some unknown processing of the file /pages/activate.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. | |||
| CVE-2025-29429 | 0.00 | — | 0.00 | Mar 17, 2025 | Code-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting (XSS) in /pages/program.php via the id, code, and name parameters. | |||
| CVE-2025-29430 | 0.00 | — | 0.00 | Mar 17, 2025 | Code-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting (XSS) in /pages/room.php via the id and rome parameters. | |||
| CVE-2025-29431 | 0.00 | — | 0.00 | Mar 17, 2025 | Code-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting (XSS) in /pages/department.php via the id, code, and name parameters. | |||
| CVE-2025-29426 | 0.00 | — | 0.00 | Mar 17, 2025 | Code-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting (XSS) in /pages/class.php via the id and cys parameters. | |||
| CVE-2025-29425 | 0.00 | — | 0.00 | Mar 17, 2025 | Code-projects Online Class and Exam Scheduling System 1.0 is vulnerable to SQL Injection in exam_save.php via the parameters member and first. | |||
| CVE-2025-29427 | 0.00 | — | 0.00 | Mar 17, 2025 | Code-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting (XSS) in profile.php via the member_first and member_last parameters. |
- CVE-2025-44135Apr 24, 2025risk 0.00cvss —epss 0.00
A vulnerability was found in code-projects Online Class and Exam Scheduling System 1.0 in /Scheduling/pages/profile_update.php. Manipulating the parameter username will cause SQL injection attacks.
- CVE-2025-44134Apr 24, 2025risk 0.00cvss —epss 0.00
A vulnerability was found in Code-Projects Online Class and Exam Scheduling System 1.0 in the file /Scheduling/pages/class_save.php. Manipulation of parameter class will lead to SQL injection attacks.
- CVE-2025-29568Apr 24, 2025risk 0.00cvss —epss 0.00
A vulnerability has been discovered in the code-projects Online Class and Exam Scheduling System 1.0. The issue affects some unknown features in the file /Scheduling/pages/class_sched.php. Manipulating the class parameter can lead to cross-site scripting (XSS).
- CVE-2025-2393Mar 17, 2025risk 0.00cvss —epss 0.00
A vulnerability, which was classified as critical, was found in code-projects Online Class and Exam Scheduling System 1.0. Affected is an unknown function of the file /pages/salut_del.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
- CVE-2025-2392Mar 17, 2025risk 0.00cvss —epss 0.00
A vulnerability, which was classified as critical, has been found in code-projects Online Class and Exam Scheduling System 1.0. This issue affects some unknown processing of the file /pages/activate.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
- CVE-2025-29429Mar 17, 2025risk 0.00cvss —epss 0.00
Code-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting (XSS) in /pages/program.php via the id, code, and name parameters.
- CVE-2025-29430Mar 17, 2025risk 0.00cvss —epss 0.00
Code-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting (XSS) in /pages/room.php via the id and rome parameters.
- CVE-2025-29431Mar 17, 2025risk 0.00cvss —epss 0.00
Code-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting (XSS) in /pages/department.php via the id, code, and name parameters.
- CVE-2025-29426Mar 17, 2025risk 0.00cvss —epss 0.00
Code-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting (XSS) in /pages/class.php via the id and cys parameters.
- CVE-2025-29425Mar 17, 2025risk 0.00cvss —epss 0.00
Code-projects Online Class and Exam Scheduling System 1.0 is vulnerable to SQL Injection in exam_save.php via the parameters member and first.
- CVE-2025-29427Mar 17, 2025risk 0.00cvss —epss 0.00
Code-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting (XSS) in profile.php via the member_first and member_last parameters.