CVE-2023-5929

Опубликовано: 02 нояб. 2023

Источник: nvd

CVSS3: 5.5

CVSS3: 7.5

CVSS2: 5.2

EPSS Низкий

Описание

A vulnerability was found in Campcodes Simple Student Information System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/students/manage_academic.php. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be used. The identifier VDB-244329 was assigned to this vulnerability.

Ссылки

https://github.com/E1CHO/cve_hub/blob/main/Simple%20Student%20Information%20System/Simple%20Student%20Information%20System%20-%20vuln%207.pdf
Exploit
Third Party Advisory
https://vuldb.com/?ctiid.244329
Permissions Required
Third Party Advisory
https://vuldb.com/?id.244329
Third Party Advisory
https://github.com/E1CHO/cve_hub/blob/main/Simple%20Student%20Information%20System/Simple%20Student%20Information%20System%20-%20vuln%207.pdf
Exploit
Third Party Advisory
https://vuldb.com/?ctiid.244329
Permissions Required
Third Party Advisory
https://vuldb.com/?id.244329
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:simple_student_information_system_project:simple_student_information_system:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 14%

0.00046

Низкий

5.5 Medium

CVSS3

7.5 High

CVSS3

5.2 Medium

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-67q7-cj8v-f9m7

CVSS3: 5.5

github

больше 2 лет назад

EPSS

Процентиль: 14%

0.00046

Низкий

5.5 Medium

CVSS3

7.5 High

CVSS3

5.2 Medium

CVSS2

Дефекты

CWE-89