Skip to main content

School Task Manager

5 CVEs product

Monthly

CVE-2024-28277 MEDIUM This Month

In Sourcecodester School Task Manager v1.0, a vulnerability was identified within the subject_name= parameter, enabling Stored Cross-Site Scripting (XSS) attacks. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS School Task Manager
NVD GitHub
CVSS 3.1
6.1
EPSS
0.4%
CVE-2024-28276 MEDIUM This Month

Sourcecodester School Task Manager 1.0 is vulnerable to Cross Site Scripting (XSS) via add-task.php?task_name=. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP XSS School Task Manager
NVD GitHub
CVSS 3.1
6.1
EPSS
0.3%
CVE-2024-26517 CRITICAL Act Now

SQL Injection vulnerability in School Task Manager v.1.0 allows a remote attacker to obtain sensitive information via a crafted payload to the delete-task.php component. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi PHP XSS School Task Manager
NVD GitHub
CVSS 3.1
9.1
EPSS
0.8%
CVE-2024-24142 CRITICAL POC Act Now

Sourcecodester School Task Manager 1.0 allows SQL Injection via the 'subject' parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi School Task Manager
NVD GitHub
CVSS 3.1
9.8
EPSS
1.1%
CVE-2024-24141 CRITICAL POC Act Now

Sourcecodester School Task Manager App 1.0 allows SQL Injection via the 'task' parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi School Task Manager
NVD GitHub
CVSS 3.1
9.8
EPSS
1.1%
EPSS 0% CVSS 6.1
MEDIUM This Month

In Sourcecodester School Task Manager v1.0, a vulnerability was identified within the subject_name= parameter, enabling Stored Cross-Site Scripting (XSS) attacks. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS School Task Manager
NVD GitHub
EPSS 0% CVSS 6.1
MEDIUM This Month

Sourcecodester School Task Manager 1.0 is vulnerable to Cross Site Scripting (XSS) via add-task.php?task_name=. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP XSS School Task Manager
NVD GitHub
EPSS 1% CVSS 9.1
CRITICAL Act Now

SQL Injection vulnerability in School Task Manager v.1.0 allows a remote attacker to obtain sensitive information via a crafted payload to the delete-task.php component. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi PHP XSS +1
NVD GitHub
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

Sourcecodester School Task Manager 1.0 allows SQL Injection via the 'subject' parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi School Task Manager
NVD GitHub
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

Sourcecodester School Task Manager App 1.0 allows SQL Injection via the 'task' parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi School Task Manager
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy