📦 Student Management System
by Angeljudesuarez
🔍 What is Student Management System?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
CVE-2025-15168 is an SQL injection vulnerability in itsourcecode Student Management System 1.0 that allows remote attackers to execute arbitrary SQL commands via the ID parameter in /statistical.php. ...
This vulnerability allows remote attackers to execute SQL injection attacks against itsourcecode Student Management System 1.0 through the /list_report.php file. Attackers can manipulate the 'sy' para...
This vulnerability allows remote attackers to execute SQL injection attacks against itsourcecode Student Management System 1.0 via the ID parameter in /form137.php. Attackers can potentially access, m...
CVE-2025-15075 is a SQL injection vulnerability in itsourcecode Student Management System 1.0 that allows remote attackers to execute arbitrary SQL commands via the ID parameter in /student_p.php. Thi...
CVE-2025-15034 is an SQL injection vulnerability in itsourcecode Student Management System 1.0 that allows remote attackers to execute arbitrary SQL commands via the ID parameter in /record.php. This ...
This SQL injection vulnerability in itsourcecode Student Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the 'sy' parameter in /advisers.php. This can lead to unaut...
CVE-2025-14653 is an SQL injection vulnerability in itsourcecode Student Management System 1.0 that allows attackers to manipulate database queries through the /addrecord.php endpoint. This enables un...
CVE-2025-14644 is an SQL injection vulnerability in itsourcecode Student Management System 1.0 that allows remote attackers to execute arbitrary SQL commands via the ID parameter in /update_subject.ph...
CVE-2025-14639 is a SQL injection vulnerability in itsourcecode Student Management System 1.0 that allows remote attackers to execute arbitrary SQL commands via the ID parameter in /uprec.php. This ca...
CVE-2025-14588 is a SQL injection vulnerability in itsourcecode Student Management System 1.0 that allows remote attackers to execute arbitrary SQL commands via the ID parameter in /update_program.php...
CVE-2025-14578 is an SQL injection vulnerability in itsourcecode Student Management System 1.0 that allows remote attackers to execute arbitrary SQL commands via the ID parameter in /update_account.ph...
CVE-2025-14337 is a SQL injection vulnerability in itsourcecode Student Management System 1.0 that allows remote attackers to execute arbitrary SQL commands via the 'grade' parameter in /new_grade.php...
CVE-2025-14335 is an SQL injection vulnerability in itsourcecode Student Management System 1.0 that allows remote attackers to execute arbitrary SQL commands via the 'sy' parameter in /new_school_year...
This vulnerability allows remote attackers to execute SQL injection attacks against the itsourcecode Student Management System 1.0 via the 'sy' parameter in the /promote.php file. Attackers can potent...
CVE-2025-14334 is a SQL injection vulnerability in itsourcecode Student Management System 1.0 that allows attackers to execute arbitrary SQL commands via the Name parameter in /new_adviser.php. This c...
CVE-2025-14258 is an SQL injection vulnerability in itsourcecode Student Management System 1.0 that allows remote attackers to execute arbitrary SQL commands via the 'sub' parameter in /newsubject.php...
CVE-2025-14256 is an SQL injection vulnerability in itsourcecode Student Management System 1.0 that allows remote attackers to execute arbitrary SQL commands via the ID parameter in /newcurriculm.php....
CVE-2025-14257 is a SQL injection vulnerability in itsourcecode Student Management System 1.0 that allows remote attackers to execute arbitrary SQL commands via the ID parameter in /newrecord.php. Thi...
This SQL injection vulnerability in itsourcecode Student Management System 1.0 allows attackers to manipulate database queries through the fname parameter in /edit_user.php. Remote attackers can poten...
This critical SQL injection vulnerability in itsourcecode Student Management System 1.0 allows attackers to execute arbitrary SQL commands through the login.php user parameter. Remote attackers can po...
This vulnerability allows remote attackers to execute arbitrary SQL commands via the ID parameter in /section_edit1.php in itsourcecode Student Information System 1.0. This affects all deployments of ...