Simple College Project Simple College — known CVE vulnerabilities
Every CVE whose affected-product data names Simple College Project Simple College, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2020-28172 — CVSS 9.8 (critical): A SQL injection vulnerability in Simple College Website 1.0 allows remote unauthenticated attackers to bypass the admin authentication…
CVE-2020-28173 — CVSS 7.2 (high): Simple College Website 1.0 allows a user to conduct remote code execution via /alumni/admin/ajax.php?action=save_settings when uploading a…