Skip to main content

Simple Exam Reviewer Management System

5 CVEs product

Monthly

CVE-2022-42201 HIGH POC This Week

Simple Exam Reviewer Management System v1.0 is vulnerable to Insecure file upload. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload Simple Exam Reviewer Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
1.0%
CVE-2022-42200 MEDIUM POC This Month

Simple Exam Reviewer Management System v1.0 is vulnerable to Stored Cross Site Scripting (XSS) via the Exam List. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Simple Exam Reviewer Management System
NVD GitHub
CVSS 3.1
5.4
EPSS
0.5%
CVE-2022-42199 HIGH POC This Week

Simple Exam Reviewer Management System v1.0 is vulnerable to Cross Site Request Forgery (CSRF) via the Exam List. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Simple Exam Reviewer Management System
NVD GitHub
CVSS 3.1
8.8
EPSS
0.5%
CVE-2022-42198 HIGH POC This Week

In Simple Exam Reviewer Management System v1.0 the User List function suffers from insecure file upload. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload Simple Exam Reviewer Management System
NVD GitHub
CVSS 3.1
8.8
EPSS
1.0%
CVE-2022-42197 MEDIUM POC This Month

In Simple Exam Reviewer Management System v1.0 the User List function has improper access control that allows low privileged users to modify user permissions to higher privileges. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Simple Exam Reviewer Management System
NVD GitHub
CVSS 3.1
6.5
EPSS
0.6%
EPSS 1% CVSS 7.2
HIGH POC This Week

Simple Exam Reviewer Management System v1.0 is vulnerable to Insecure file upload. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload Simple Exam Reviewer Management System
NVD GitHub
EPSS 0% CVSS 5.4
MEDIUM POC This Month

Simple Exam Reviewer Management System v1.0 is vulnerable to Stored Cross Site Scripting (XSS) via the Exam List. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Simple Exam Reviewer Management System
NVD GitHub
EPSS 0% CVSS 8.8
HIGH POC This Week

Simple Exam Reviewer Management System v1.0 is vulnerable to Cross Site Request Forgery (CSRF) via the Exam List. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Simple Exam Reviewer Management System
NVD GitHub
EPSS 1% CVSS 8.8
HIGH POC This Week

In Simple Exam Reviewer Management System v1.0 the User List function suffers from insecure file upload. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload Simple Exam Reviewer Management System
NVD GitHub
EPSS 1% CVSS 6.5
MEDIUM POC This Month

In Simple Exam Reviewer Management System v1.0 the User List function has improper access control that allows low privileged users to modify user permissions to higher privileges. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Simple Exam Reviewer Management System
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy