Filtered by vendor Lopalopa
Subscribe
Total
112 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-50837 | 1 Lopalopa | 1 E-learning Management System | 2026-06-17 | N/A | 5.4 MEDIUM |
| A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/admin_user.php in KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to execute arbitrary scripts via the firstname and username parameters. | |||||
| CVE-2024-50836 | 1 Lopalopa | 1 E-learning Management System | 2026-06-17 | N/A | 4.8 MEDIUM |
| A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/teachers.php in KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to execute arbitrary scripts via the firstname and lastname parameters. | |||||
| CVE-2024-50835 | 1 Lopalopa | 1 E-learning Management System | 2026-06-17 | N/A | 7.2 HIGH |
| A SQL Injection vulnerability was found in /admin/edit_student.php in KASHIPARA E-learning Management System Project 1.0 via the cys, un, ln, fn, and id parameters. | |||||
| CVE-2024-50834 | 1 Lopalopa | 1 E-learning Management System | 2026-06-17 | N/A | 7.2 HIGH |
| A SQL Injection was found in /admin/teachers.php in KASHIPARA E-learning Management System Project 1.0 via the firstname and lastname parameters. | |||||
| CVE-2024-50833 | 1 Lopalopa | 1 E-learning Management System | 2026-06-17 | N/A | 9.8 CRITICAL |
| A SQL Injection vulnerability was found in /login.php in KASHIPARA E-learning Management System Project 1.0 via the username and password parameters. | |||||
| CVE-2024-50832 | 1 Lopalopa | 1 E-learning Management System | 2026-06-17 | N/A | 7.2 HIGH |
| A SQL Injection vulnerability was found in /admin/edit_class.php in kashipara E-learning Management System Project 1.0 via the class_name parameter. | |||||
| CVE-2024-50831 | 1 Lopalopa | 1 E-learning Management System | 2026-06-17 | N/A | 7.2 HIGH |
| A SQL Injection was found in /admin/admin_user.php in kashipara E-learning Management System Project 1.0 via the username and password parameters. | |||||
| CVE-2024-50830 | 1 Lopalopa | 1 E-learning Management System | 2026-06-17 | N/A | 7.2 HIGH |
| A SQL Injection vulnerability was found in /admin/calendar_of_events.php in kashipara E-learning Management System Project 1.0 via the date_start, date_end, and title parameters. | |||||
| CVE-2024-50829 | 1 Lopalopa | 1 E-learning Management System | 2026-06-17 | N/A | 7.2 HIGH |
| A SQL Injection vulnerability was found in /admin/edit_subject.php in kashipara E-learning Management System Project 1.0 via the unit parameter. | |||||
| CVE-2024-50828 | 1 Lopalopa | 1 E-learning Management System | 2026-06-17 | N/A | 7.2 HIGH |
| A SQL Injection vulnerability was found in /admin/edit_department.php in kashipara E-learning Management System Project 1.0 via the d parameter. | |||||
| CVE-2024-50827 | 1 Lopalopa | 1 E-learning Management System | 2026-06-17 | N/A | 7.2 HIGH |
| A SQL Injection vulnerability was found in /admin/add_subject.php in kashipara E-learning Management System Project 1.0 via the subject_code parameter. | |||||
| CVE-2024-50826 | 1 Lopalopa | 1 E-learning Management System | 2026-06-17 | N/A | 7.2 HIGH |
| A SQL Injection vulnerability was found in /admin/add_content.php in kashipara E-learning Management System Project 1.0 via the title and content parameters. | |||||
| CVE-2024-50825 | 1 Lopalopa | 1 E-learning Management System | 2026-06-17 | N/A | 7.2 HIGH |
| A SQL Injection vulnerability was found in /admin/school_year.php in kashipara E-learning Management System Project 1.0 via the school_year parameter. | |||||
| CVE-2024-50824 | 1 Lopalopa | 1 E-learning Management System | 2026-06-17 | N/A | 7.2 HIGH |
| A SQL Injection vulnerability was found in /admin/class.php in kashipara E-learning Management System Project 1.0 via the class_name parameter. | |||||
| CVE-2024-50823 | 1 Lopalopa | 1 E-learning Management System | 2026-06-17 | N/A | 9.8 CRITICAL |
| A SQL Injection vulnerability was found in /admin/login.php in kashipara E-learning Management System Project 1.0 via the username and password parameters. | |||||
| CVE-2024-4905 | 1 Lopalopa | 1 College Management System | 2026-06-17 | 6.5 MEDIUM | 6.3 MEDIUM |
| A vulnerability classified as critical has been found in Kashipara College Management System 1.0. Affected is an unknown function of the file view_students_each_detail.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-264438 is the identifier assigned to this vulnerability. | |||||
| CVE-2024-4808 | 1 Lopalopa | 1 College Management System | 2026-06-17 | 6.5 MEDIUM | 6.3 MEDIUM |
| A vulnerability, which was classified as critical, was found in Kashipara College Management System 1.0. Affected is an unknown function of the file delete_faculty.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-263928. | |||||
| CVE-2024-4807 | 1 Lopalopa | 1 College Management System | 2026-06-17 | 6.5 MEDIUM | 6.3 MEDIUM |
| A vulnerability, which was classified as critical, has been found in Kashipara College Management System 1.0. This issue affects some unknown processing of the file delete_user.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-263927. | |||||
| CVE-2024-4806 | 1 Lopalopa | 1 College Management System | 2026-06-17 | 6.5 MEDIUM | 6.3 MEDIUM |
| A vulnerability classified as critical was found in Kashipara College Management System 1.0. This vulnerability affects unknown code of the file each_extracurricula_activities.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-263926 is the identifier assigned to this vulnerability. | |||||
| CVE-2024-4805 | 1 Lopalopa | 1 College Management System | 2026-06-17 | 6.5 MEDIUM | 6.3 MEDIUM |
| A vulnerability classified as critical has been found in Kashipara College Management System 1.0. This affects an unknown part of the file edit_faculty.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-263925 was assigned to this vulnerability. | |||||