College Management System Project College Management System — known CVE vulnerabilities
Every CVE whose affected-product data names College Management System Project College Management System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2020-25409 — CVSS 9.8 (critical): Projectsworlds College Management System Php 1.0 is vulnerable to SQL injection issues over multiple parameters.
CVE-2022-39180 — CVSS 9.8 (critical): College Management System v1.0 - SQL Injection (SQLi). By inserting SQL commands to the username and password fields in the login.php page
CVE-2020-26051 — CVSS 9.8 (critical): College Management System Php 1.0 suffers from SQL injection vulnerabilities in the index.php page from POST parameters 'unametxt' and…
CVE-2022-28079 — CVSS 8.8 (high): College Management System v1.0 was discovered to contain a SQL injection vulnerability via the course_code parameter.
CVE-2022-32420 — CVSS 8.8 (high): College Management System v1.0 was discovered to contain a remote code execution (RCE) vulnerability via /College/admin/teacher.php. This…
CVE-2024-7681 — CVSS 7.3 (high): A vulnerability was found in code-projects College Management System 1.0. It has been declared as critical. This vulnerability affects…
CVE-2022-30404 — CVSS 7.2 (high): College Management System v1.0 is vulnerable to SQL Injection via /College_Management_System/admin/display-teacher.php?teacher_id=.
CVE-2022-39179 — CVSS 7.2 (high): College Management System v1.0 - Authenticated remote code execution. An admin user (the authentication can be bypassed using SQL Injection…
CVE-2020-25408 — CVSS 6.5 (medium): A Cross-Site Request Forgery (CSRF) vulnerability exists in ProjectWorlds College Management System Php 1.0 that allows a remote attacker…