Sourcecodester Student Study Center Desk Management System v1.0 admin\reports\index.php#date_from has a SQL Injection vulnerability.

Metrics

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable yes

Technical Impact total

Affected Vendors & Products

Vendors Products
Oretnom23
  • Student Study Center Desk Management System

Configuration 1 [-]

cpe:2.3:a:oretnom23:student_study_center_desk_management_system:1.0:*:*:*:*:*:*:*

No data.

References
Link Providers
https://liaorj.github.io/2023/03/17/admin-reports-date-from-has-sql-injection-vulnerability/#more cve-icon cve-icon
History

Wed, 22 Jan 2025 17:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Sat, 07 Sep 2024 13:15:00 +0000

Type Values Removed Values Added
First Time appeared Oretnom23
Oretnom23 student Study Center Desk Management System
CPEs cpe:2.3:a:student_study_center_desk_management_system_project:student_study_center_desk_management_system:1.0:*:*:*:*:*:*:* cpe:2.3:a:oretnom23:student_study_center_desk_management_system:1.0:*:*:*:*:*:*:*
Vendors & Products Student Study Center Desk Management System Project
Student Study Center Desk Management System Project student Study Center Desk Management System
Oretnom23
Oretnom23 student Study Center Desk Management System
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-05-18T00:00:00

Updated: 2025-01-22T16:20:00.612Z

Reserved: 2023-04-07T00:00:00

Link: CVE-2023-29985

cve-icon Vulnrichment

Updated: 2024-08-02T14:21:44.034Z

cve-icon NVD

Status : Modified

Published: 2023-05-18T01:15:09.117

Modified: 2025-01-22T17:15:10.717

Link: CVE-2023-29985

cve-icon Redhat

No data.