Online Examination System Project Online Examination System — known CVE vulnerabilities
Every CVE whose affected-product data names Online Examination System Project Online Examination System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2023-45111 — CVSS 9.8 (critical): Online Examination System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'email' parameter of the…
CVE-2020-25411 — CVSS 6.5 (medium): Projectworlds Online Examination System 1.0 is vulnerable to CSRF, which allows a remote attacker to delete the existing user.
CVE-2023-36256 — CVSS 6.5 (medium): The Online Examination System Project 1.0 version is vulnerable to Cross-Site Request Forgery (CSRF) attacks. An attacker can craft a…
CVE-2020-29258 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability in Online Examination System 1.0 via the w parameter to index.php.
CVE-2020-26006 — CVSS 6.1 (medium): Project Worlds Online Examination System 1.0 is affected by Cross Site Scripting (XSS) via account.php.
CVE-2020-29257 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability in Online Examination System 1.0 via the q parameter to feedback.php.
CVE-2020-29259 — CVSS 5.4 (medium): Cross-site scripting (XSS) vulnerability in Online Examination System 1.0 via the subject or feedback parameter to feedback.php.