Ingenious School Management System Project Ingenious School Management System vulnerabilities
2 known vulnerabilities affecting ingenious_school_management_system_project/ingenious_school_management_system.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2017-15957P2HIGHCVSS 8.8PoCv2.3.02017-10-29
CVE-2017-15957 [HIGH] CWE-434 CVE-2017-15957: my_profile.php in Ingenious School Management System 2.3.0 allows a student or teacher to upload an
my_profile.php in Ingenious School Management System 2.3.0 allows a student or teacher to upload an arbitrary file.
nvd
CVE-2017-16561P3CRITICALCVSS 9.8v2.3.02017-11-07
CVE-2017-16561 [CRITICAL] CWE-89 CVE-2017-16561: /view/friend_profile.php in Ingenious School Management System 2.3.0 is vulnerable to Boolean-based
/view/friend_profile.php in Ingenious School Management System 2.3.0 is vulnerable to Boolean-based and Time-based SQL injection in the 'friend_index' parameter of a GET request.
nvd