Every CVE whose affected-product data names Arslansoft Education Portal Project Arslansoft Education Portal, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2023-5634 — CVSS 9.8 (critical): Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ArslanSoft Education Portal allows…
CVE-2023-5636 — CVSS 9.8 (critical): Unrestricted Upload of File with Dangerous Type vulnerability in ArslanSoft Education Portal allows Command Injection. This issue affects…
CVE-2023-5635 — CVSS 7.5 (high): Improper Protection for Outbound Error Messages and Alert Signals vulnerability in ArslanSoft Education Portal allows Account Footprinting…
CVE-2023-5637 — CVSS 7.5 (high): Unrestricted Upload of File with Dangerous Type vulnerability in ArslanSoft Education Portal allows Read Sensitive Strings Within an…