Skip to main content

Engineers Online Portal

25 CVEs product

Monthly

CVE-2024-0351 LOW POC Monitor

A vulnerability classified as problematic has been found in SourceCodester Engineers Online Portal 1.0. Rated low severity (CVSS 3.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Session Fixation Information Disclosure Engineers Online Portal
NVD VulDB
CVSS 3.1
3.1
EPSS
0.0%
CVE-2024-0350 LOW POC Monitor

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. Rated low severity (CVSS 3.1), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Information Disclosure Engineers Online Portal
NVD VulDB
CVSS 3.1
3.1
EPSS
0.1%
CVE-2024-0349 LOW Monitor

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Engineers Online Portal
NVD VulDB
CVSS 3.1
3.7
EPSS
0.0%
CVE-2024-0348 MEDIUM POC Monitor

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload Denial Of Service Engineers Online Portal
NVD VulDB
CVSS 3.1
4.3
EPSS
0.1%
CVE-2024-0347 LOW POC Monitor

A vulnerability was found in SourceCodester Engineers Online Portal 1.0 and classified as problematic.php. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

PHP Brute Force Information Disclosure Engineers Online Portal
NVD VulDB
CVSS 3.1
3.7
EPSS
0.1%
CVE-2024-0260 MEDIUM POC Monitor

A vulnerability, which was classified as problematic, was found in SourceCodester Engineers Online Portal 1.0. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP Information Disclosure Engineers Online Portal
NVD VulDB
CVSS 3.1
4.3
EPSS
0.0%
CVE-2024-0182 HIGH This Month

A vulnerability was found in SourceCodester Engineers Online Portal 1.0 and classified as critical. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Engineers Online Portal
NVD VulDB
CVSS 3.1
7.3
EPSS
0.1%
CVE-2023-7160 MEDIUM This Month

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Engineers Online Portal
NVD VulDB
CVSS 3.1
6.1
EPSS
0.3%
CVE-2023-5284 HIGH POC This Week

A vulnerability classified as critical has been found in SourceCodester Engineers Online Portal 1.0. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload PHP Engineers Online Portal
NVD GitHub VulDB
CVSS 3.1
8.8
EPSS
0.8%
CVE-2023-5283 HIGH POC This Week

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Engineers Online Portal
NVD GitHub VulDB
CVSS 3.1
8.8
EPSS
0.6%
CVE-2023-5282 CRITICAL POC Act Now

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Engineers Online Portal
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-5281 CRITICAL POC Act Now

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Engineers Online Portal
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-5280 CRITICAL POC Act Now

A vulnerability was found in SourceCodester Engineers Online Portal 1.0 and classified as critical. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Engineers Online Portal
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-5279 CRITICAL POC Act Now

A vulnerability has been found in SourceCodester Engineers Online Portal 1.0 and classified as critical. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Engineers Online Portal
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-5278 CRITICAL POC Act Now

A vulnerability, which was classified as critical, was found in SourceCodester Engineers Online Portal 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Engineers Online Portal
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-5277 CRITICAL POC Act Now

A vulnerability, which was classified as critical, has been found in SourceCodester Engineers Online Portal 1.0.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload PHP Engineers Online Portal
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-5276 CRITICAL POC Act Now

A vulnerability classified as critical was found in SourceCodester Engineers Online Portal 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Engineers Online Portal
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.7%
CVE-2021-43437 HIGH This Week

In sourcecodetester Engineers Online Portal as of 10-21-21, an attacker can manipulate the Host header as seen by the web application and cause the application to behave in unexpected ways. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Engineers Online Portal
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2021-42671 HIGH POC THREAT This Week

An incorrect access control vulnerability exists in Sourcecodester Engineers Online Portal in PHP in nia_munoz_monitoring_system/admin/uploads. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Authentication Bypass Engineers Online Portal
NVD GitHub
CVSS 3.1
7.5
EPSS
19.7%
CVE-2021-42670 CRITICAL POC Act Now

A SQL injection vulnerability exists in Sourcecodester Engineers Online Portal in PHP via the id parameter to the announcements_student.php web page. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Information Disclosure RCE Engineers Online Portal
NVD GitHub
CVSS 3.1
9.8
EPSS
8.3%
CVE-2021-42669 CRITICAL POC THREAT Act Now

A file upload vulnerability exists in Sourcecodester Engineers Online Portal in PHP via dashboard_teacher.php, which allows changing the avatar through teacher_avatar.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP File Upload Engineers Online Portal
NVD GitHub
CVSS 3.1
9.8
EPSS
23.3%
CVE-2021-42668 CRITICAL POC Act Now

A SQL Injection vulnerability exists in Sourcecodester Engineers Online Portal in PHP via the id parameter in the my_classmates.php web page.. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Information Disclosure RCE Engineers Online Portal
NVD GitHub
CVSS 3.1
9.8
EPSS
4.7%
CVE-2021-42666 HIGH POC This Week

A SQL Injection vulnerability exists in Sourcecodester Engineers Online Portal in PHP via the id parameter to quiz_question.php, which could let a malicious user extract sensitive data from the web. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Information Disclosure RCE Engineers Online Portal
NVD GitHub Exploit-DB
CVSS 3.1
8.8
EPSS
4.4%
CVE-2021-42665 CRITICAL POC Act Now

An SQL Injection vulnerability exists in Sourcecodester Engineers Online Portal in PHP via the login form inside of index.php, which can allow an attacker to bypass authentication. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Engineers Online Portal
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
4.9%
CVE-2021-42664 MEDIUM POC This Month

A Stored Cross Site Scripting (XSS) Vulneraibiilty exists in Sourcecodester Engineers Online Portal in PHP via the (1) Quiz title and (2) quiz description parameters to add_quiz.php. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Engineers Online Portal
NVD GitHub Exploit-DB
CVSS 3.1
5.4
EPSS
1.6%
EPSS 0% CVSS 3.1
LOW POC Monitor

A vulnerability classified as problematic has been found in SourceCodester Engineers Online Portal 1.0. Rated low severity (CVSS 3.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Session Fixation Information Disclosure Engineers Online Portal
NVD VulDB
EPSS 0% CVSS 3.1
LOW POC Monitor

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. Rated low severity (CVSS 3.1), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Information Disclosure Engineers Online Portal
NVD VulDB
EPSS 0% CVSS 3.7
LOW Monitor

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Engineers Online Portal
NVD VulDB
EPSS 0% CVSS 4.3
MEDIUM POC Monitor

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload Denial Of Service Engineers Online Portal
NVD VulDB
EPSS 0% CVSS 3.7
LOW POC Monitor

A vulnerability was found in SourceCodester Engineers Online Portal 1.0 and classified as problematic.php. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

PHP Brute Force Information Disclosure +1
NVD VulDB
EPSS 0% CVSS 4.3
MEDIUM POC Monitor

A vulnerability, which was classified as problematic, was found in SourceCodester Engineers Online Portal 1.0. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP Information Disclosure Engineers Online Portal
NVD VulDB
EPSS 0% CVSS 7.3
HIGH This Month

A vulnerability was found in SourceCodester Engineers Online Portal 1.0 and classified as critical. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Engineers Online Portal
NVD VulDB
EPSS 0% CVSS 6.1
MEDIUM This Month

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Engineers Online Portal
NVD VulDB
EPSS 1% CVSS 8.8
HIGH POC This Week

A vulnerability classified as critical has been found in SourceCodester Engineers Online Portal 1.0. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload PHP Engineers Online Portal
NVD GitHub VulDB
EPSS 1% CVSS 8.8
HIGH POC This Week

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Engineers Online Portal
NVD GitHub VulDB
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Engineers Online Portal
NVD GitHub VulDB
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Engineers Online Portal
NVD GitHub VulDB
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

A vulnerability was found in SourceCodester Engineers Online Portal 1.0 and classified as critical. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Engineers Online Portal
NVD GitHub VulDB
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

A vulnerability has been found in SourceCodester Engineers Online Portal 1.0 and classified as critical. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Engineers Online Portal
NVD GitHub VulDB
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

A vulnerability, which was classified as critical, was found in SourceCodester Engineers Online Portal 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Engineers Online Portal
NVD GitHub VulDB
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

A vulnerability, which was classified as critical, has been found in SourceCodester Engineers Online Portal 1.0.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload PHP Engineers Online Portal
NVD GitHub VulDB
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

A vulnerability classified as critical was found in SourceCodester Engineers Online Portal 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Engineers Online Portal
NVD GitHub VulDB
EPSS 1% CVSS 8.8
HIGH This Week

In sourcecodetester Engineers Online Portal as of 10-21-21, an attacker can manipulate the Host header as seen by the web application and cause the application to behave in unexpected ways. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Engineers Online Portal
NVD
EPSS 20% CVSS 7.5
HIGH POC THREAT This Week

An incorrect access control vulnerability exists in Sourcecodester Engineers Online Portal in PHP in nia_munoz_monitoring_system/admin/uploads. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Authentication Bypass Engineers Online Portal
NVD GitHub
EPSS 8% CVSS 9.8
CRITICAL POC Act Now

A SQL injection vulnerability exists in Sourcecodester Engineers Online Portal in PHP via the id parameter to the announcements_student.php web page. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Information Disclosure +2
NVD GitHub
EPSS 23% CVSS 9.8
CRITICAL POC THREAT Act Now

A file upload vulnerability exists in Sourcecodester Engineers Online Portal in PHP via dashboard_teacher.php, which allows changing the avatar through teacher_avatar.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP File Upload Engineers Online Portal
NVD GitHub
EPSS 5% CVSS 9.8
CRITICAL POC Act Now

A SQL Injection vulnerability exists in Sourcecodester Engineers Online Portal in PHP via the id parameter in the my_classmates.php web page.. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Information Disclosure +2
NVD GitHub
EPSS 4% CVSS 8.8
HIGH POC This Week

A SQL Injection vulnerability exists in Sourcecodester Engineers Online Portal in PHP via the id parameter to quiz_question.php, which could let a malicious user extract sensitive data from the web. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Information Disclosure +2
NVD GitHub Exploit-DB
EPSS 5% CVSS 9.8
CRITICAL POC Act Now

An SQL Injection vulnerability exists in Sourcecodester Engineers Online Portal in PHP via the login form inside of index.php, which can allow an attacker to bypass authentication. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Engineers Online Portal
NVD GitHub Exploit-DB
EPSS 2% CVSS 5.4
MEDIUM POC This Month

A Stored Cross Site Scripting (XSS) Vulneraibiilty exists in Sourcecodester Engineers Online Portal in PHP via the (1) Quiz title and (2) quiz description parameters to add_quiz.php. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Engineers Online Portal
NVD GitHub Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy