Janobe Online Reviewer System — known CVE vulnerabilities
Every CVE whose affected-product data names Janobe Online Reviewer System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2021-27130 — CVSS 9.8 (critical): Online Reviewer System 1.0 contains a SQL injection vulnerability through authentication bypass, which may lead to a reverse shell upload.
CVE-2021-41646 — CVSS 9.8 (critical): Remote Code Execution (RCE) vulnerability exists in Sourcecodester Online Reviewer System 1.0 by uploading a maliciously crafted PHP file…
CVE-2023-2596 — CVSS 6.3 (medium): A vulnerability was found in SourceCodester Online Reviewer System 1.0 and classified as critical. Affected by this issue is some unknown…
CVE-2026-36919 — CVSS 2.7 (low): Sourcecodester Online Reviewer System v1.0 is vulnerale to SQL Injection in the file /system/system/admins/assessments/examproper/exam-updat…
CVE-2026-36920 — CVSS 2.7 (low): Sourcecodester Online Reviewer System v1.0 is vulnerable to SQL Injection in the file /system/system/admins/assessments/examproper/questions…