VYPR
Vendor

Donbermoy

Products
3
CVEs
7
Across products
7
Status
Private

Products

3

Recent CVEs

7
  • CVE-2022-46502CriJan 13, 2023
    risk 0.65cvss 9.8epss 0.14

    Online Student Enrollment System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter at /student_enrollment/admin/login.php.

  • CVE-2026-7545HigMay 1, 2026
    risk 0.47cvss 7.3epss 0.00

    A weakness has been identified in SourceCodester Advanced School Management System 1.0. The affected element is an unknown function of the file commonController.php of the component checkEmail Endpoint. This manipulation causes sql injection. Remote exploitation of the attack is…

  • CVE-2025-9833HigSep 2, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was detected in SourceCodester Online Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /Login/login.php. Performing manipulation of the argument uname results in sql injection. It is possible to initiate the…

  • CVE-2025-9690MedAug 30, 2025
    risk 0.41cvss 6.3epss 0.00

    A flaw has been found in SourceCodester Advanced School Management System 1.0. This affects an unknown function of the file /index.php/stock/vendordetails. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been…

  • CVE-2025-9689MedAug 30, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was detected in SourceCodester Advanced School Management System 1.0. The impacted element is an unknown function of the file /index.php/stock/item_select. The manipulation of the argument q results in sql injection. It is possible to launch the attack remotely.…

  • CVE-2022-46503MedJan 12, 2023
    risk 0.35cvss 5.4epss 0.00

    A cross-site scripting (XSS) vulnerability in the component /admin/register.php of Online Student Enrollment System v1.0 allows attackers to execute arbitrary web scripts via a crafted payload injected into the name parameter.

  • CVE-2025-9306LowAug 21, 2025
    risk 0.23cvss 3.5epss 0.00

    A vulnerability was detected in SourceCodester Advanced School Management System 1.0. The impacted element is an unknown function of the file /index.php/notice/addNotice. The manipulation of the argument noticeSubject results in cross site scripting. It is possible to launch the…

VYPR — Vulnerability Intelligence