Lopalopa E-learning_management_system
41 CVEs affecting Lopalopa E-learning_management_system. Latest disclosed: 2024-12-09. Critical: 11, High: 19.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-54934 | Critical | 9.8 | 2024-12-09 | Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_class.php. |
CVE-2024-54932 | Critical | 9.8 | 2024-12-09 | Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_department.php. |
CVE-2024-54931 | Critical | 9.8 | 2024-12-09 | A SQL Injection was found in /admin/delete_event.php in kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL com… |
CVE-2024-54925 | Critical | 9.8 | 2024-12-09 | A SQL Injection was found in /remove_sent_message.php in kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL co… |
CVE-2024-54924 | Critical | 9.8 | 2024-12-09 | A SQL Injection was found in /admin/edit_content.php in kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL com… |
CVE-2024-54923 | Critical | 9.8 | 2024-12-09 | A SQL Injection vulnerability was found in /admin/edit_teacher.php in kashipara E-learning Management System v1.0, which allows remote attackers to execute arb… |
CVE-2024-54921 | Critical | 9.8 | 2024-12-09 | A SQL Injection was found in /student_signup.php in kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL command… |
CVE-2024-54918 | Critical | 9.8 | 2024-12-09 | Kashipara E-learning Management System v1.0 is vulnerable to Remote Code Execution via File Upload in /teacher_avatar.php. |
CVE-2024-54920 | Critical | 9.8 | 2024-12-09 | A SQL Injection vulnerability was found in /teacher_signup.php of kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitra… |
CVE-2024-50823 | Critical | 9.8 | 2024-11-14 | A SQL Injection vulnerability was found in /admin/login.php in kashipara E-learning Management System Project 1.0 via the username and password parameters. |
CVE-2024-50833 | Critical | 9.8 | 2024-11-14 | A SQL Injection vulnerability was found in /login.php in KASHIPARA E-learning Management System Project 1.0 via the username and password parameters. |
CVE-2024-54926 | High | 8.8 | 2024-12-09 | A SQL Injection vulnerability was found in /search_class.php of kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary… |
CVE-2024-54938 | High | 7.5 | 2024-12-09 | A Directory Listing issue was found in Kashipara E-Learning Management System v1.0, which allows remote attackers to access sensitive files and directories via… |
CVE-2024-54928 | High | 7.2 | 2024-12-09 | kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_teacher.php, |
CVE-2024-54927 | High | 7.2 | 2024-12-09 | Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_users.php. |
CVE-2024-54933 | High | 7.2 | 2024-12-09 | Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_content.php. |
CVE-2024-54930 | High | 7.2 | 2024-12-09 | Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_student.php. |
CVE-2024-54922 | High | 7.2 | 2024-12-09 | A SQL Injection was found in /admin/edit_user.php of kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL comman… |
CVE-2024-54929 | High | 7.2 | 2024-12-09 | KASHIPARA E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_subject.php. |
CVE-2024-50831 | High | 7.2 | 2024-11-14 | A SQL Injection was found in /admin/admin_user.php in kashipara E-learning Management System Project 1.0 via the username and password parameters. |