matias-a11y/cve

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-13037 ↗	Dec 30, 2024Monday, 30 December 2024, 04:15	6.3 MEDIUM	6.5 MEDIUM
A vulnerability was found in 1000 Projects Attendance Tracking Management System 1.0. It has been classified as critical. Affected is the function attendance_report of the file /admin/report.php. The manipulation of the argument course_id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
CVE-2024-7680 ↗	Aug 12, 2024Monday, 12 August 2024, 13:38	6.3 MEDIUM	6.5 MEDIUM
A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been classified as critical. This affects an unknown part of the file /incedit.php?id=4. The manipulation of the argument id/inccat/desc/date/amount leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.