Filtered by vendor Simple College Project
Subscriptions
Filtered by product Simple College
Subscriptions
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2020-28173 | 1 Simple College Project | 1 Simple College | 2024-08-04 | 7.2 High |
| Simple College Website 1.0 allows a user to conduct remote code execution via /alumni/admin/ajax.php?action=save_settings when uploading a malicious file using the image upload functionality, which is stored in /alumni/admin/assets/uploads/. | ||||
| CVE-2020-28172 | 1 Simple College Project | 1 Simple College | 2024-08-04 | 9.8 Critical |
| A SQL injection vulnerability in Simple College Website 1.0 allows remote unauthenticated attackers to bypass the admin authentication mechanism in college_website/admin/ajax.php?action=login, thus gaining access to the website administrative panel. | ||||
Page 1 of 1.