Duware Duclassmate vulnerabilities
2 known vulnerabilities affecting duware/duclassmate.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2005-2049P3HIGHCVSS 7.5PoCv1.22005-06-22
CVE-2005-2049 [HIGH] CVE-2005-2049: Multiple SQL injection vulnerabilities in DUware DUclassmate 1.2 allow remote attackers to execute a
Multiple SQL injection vulnerabilities in DUware DUclassmate 1.2 allow remote attackers to execute arbitrary SQL commands via the (1) iState parameter to default.asp or (2) iPro parameter to edit.asp.
nvd
CVE-2004-2198P4MEDIUMCVSS 6.4PoCv1.0v1.12004-12-31
CVE-2004-2198 [MEDIUM] CVE-2004-2198: account.asp in DUware DUclassmate 1.0 through 1.1 allows remote attackers to change the passwords fo
account.asp in DUware DUclassmate 1.0 through 1.1 allows remote attackers to change the passwords for arbitrary users by modifying the MM_recordId parameter on the "My Account" page.
nvd