Filtered by vendor Online Reviewer Management System Project
Subscribe
Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2023-25431 | 1 Online Reviewer Management System Project | 1 Online Reviewer Management System | 2023-03-06 | N/A | 4.8 MEDIUM |
An issue was discovered in Online Reviewer Management System v1.0. There is a XSS vulnerability via reviewer_0/admins/assessments/course/course-update.php. | |||||
CVE-2023-25432 | 1 Online Reviewer Management System Project | 1 Online Reviewer Management System | 2023-03-06 | N/A | 7.2 HIGH |
An issue was discovered in Online Reviewer Management System v1.0. There is a SQL injection that can directly issue instructions to the background database system via reviewer_0/admins/assessments/course/course-update.php. | |||||
CVE-2023-1038 | 1 Online Reviewer Management System Project | 1 Online Reviewer Management System | 2023-03-03 | N/A | 9.8 CRITICAL |
A vulnerability classified as critical has been found in SourceCodester Online Reviewer Management System 1.0. Affected is an unknown function of the file /reviewer_0/admins/assessments/pretest/questions-view.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-221796. |