Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Computer_laboratory_management_system
(Oretnom23)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 6 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-08-30 | CVE-2024-8346 | A vulnerability classified as critical has been found in SourceCodester Computer Laboratory Management System 1.0. Affected is the function update_settings_info of the file /classes/SystemSettings.php?f=update_settings. The manipulation of the argument name leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. | Computer_laboratory_management_system | 9.8 | ||
| 2024-08-30 | CVE-2024-8347 | A vulnerability classified as critical was found in SourceCodester Computer Laboratory Management System 1.0. Affected by this vulnerability is the function delete_record of the file /classes/Master.php?f=delete_record. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. | Computer_laboratory_management_system | 9.8 | ||
| 2024-08-30 | CVE-2024-8348 | A vulnerability, which was classified as critical, has been found in SourceCodester Computer Laboratory Management System 1.0. Affected by this issue is the function delete_category of the file /classes/Master.php?f=delete_category. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. | Computer_laboratory_management_system | 9.8 | ||
| 2024-08-12 | CVE-2024-41332 | Incorrect access control in the delete_category function of Sourcecodester Computer Laboratory Management System v1.0 allows authenticated attackers with low-level privileges to arbitrarily delete categories. | Computer_laboratory_management_system | 6.5 | ||
| 2024-08-07 | CVE-2024-34479 | SourceCodester Computer Laboratory Management System 1.0 allows classes/Master.php id SQL Injection. | Computer_laboratory_management_system | 9.8 | ||
| 2024-08-07 | CVE-2024-34480 | SourceCodester Computer Laboratory Management System 1.0 allows admin/category/view_category.php id SQL Injection. | Computer_laboratory_management_system | 9.8 |