Qdocs Smart_school
5 CVEs affecting Qdocs Smart_school. Latest disclosed: 2025-11-10. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-60500 | High | 7.2 | 2025-10-21 | QDocs Smart School Management System 7.1 allows authenticated users with roles such as "accountant" or "admin" to bypass file type restrictions in the media up… |
CVE-2024-8784 | Medium | 6.3 | 2024-09-13 | A vulnerability classified as critical was found in QDocs Smart School Management System 7.0.0. Affected by this vulnerability is an unknown functionality of t… |
CVE-2023-5495 | Medium | 6.3 | 2023-10-10 | A vulnerability was found in QDocs Smart School 6.4.1. It has been classified as critical. This affects an unknown part of the file /course/filterRecords/ of t… |
CVE-2024-34240 | Medium | 6.1 | 2024-05-21 | QDOCS Smart School 7.0.0 is vulnerable to Cross Site Scripting (XSS) resulting in arbitrary code execution in admin functions related to adding or updating rec… |
CVE-2025-41107 | Medium | 5.4 | 2025-11-10 | Stored Cross Site Scripting (XSS) vulnerability in Smart School 7.0 due to lack of proper validation of user input when sending a POST request to '/online_admi… |