cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-1666,https://securityvulnerability.io/vulnerability/CVE-2023-1666,SourceCodester Automatic Question Paper Generator System GET Parameter view_class.php sql injection,"A vulnerability exists in the SourceCodester Automatic Question Paper Generator System 1.0 that allows an attacker to exploit the GET Parameter Handler component by manipulating the 'id' argument. This leads to SQL injection, which can be executed remotely, giving unauthorized access to database information. The potential for exploitation has been made public, heightening the urgency for users to apply necessary security measures and updates.",SourceCodester,Automatic Question Paper Generator System,9.8,CRITICAL,0.0021800000686198473,false,,false,false,false,,,false,false,,2023-03-27T21:15:00.000Z,0
CVE-2023-1592,https://securityvulnerability.io/vulnerability/CVE-2023-1592,SourceCodester Automatic Question Paper Generator System GET Parameter view_class.php sql injection,A vulnerability classified as critical was found in SourceCodester Automatic Question Paper Generator System 1.0. This vulnerability affects unknown code of the file admin/courses/view_class.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The identifier of this vulnerability is VDB-223660.,Sourcecodester,Automatic Question Paper Generator System,6.3,MEDIUM,0.0028800000436604023,false,,false,false,false,,,false,false,,2023-03-23T10:15:00.000Z,0
CVE-2023-1593,https://securityvulnerability.io/vulnerability/CVE-2023-1593,SourceCodester Automatic Question Paper Generator System cross site scripting,"A vulnerability, which was classified as problematic, has been found in SourceCodester Automatic Question Paper Generator System 1.0. This issue affects some unknown processing of the file classes/Master.php?f=save_class. The manipulation of the argument description leads to cross site scripting. The attack may be initiated remotely. The identifier VDB-223661 was assigned to this vulnerability.",SourceCodester,Automatic Question Paper Generator System,6.1,MEDIUM,0.000859999970998615,false,,false,false,false,,,false,false,,2023-03-23T10:15:00.000Z,0
CVE-2023-1591,https://securityvulnerability.io/vulnerability/CVE-2023-1591,SourceCodester Automatic Question Paper Generator System sql injection,"A vulnerability in SourceCodester's Automatic Question Paper Generator System version 1.0 has been detected, allowing an attacker to exploit the 'id/email' arguments in the file 'classes/Users.php?f=save_ruser'. This flaw enables SQL injection attacks, potentially leading to unauthorized database access. The attack can be executed remotely, posing a significant risk to web application integrity and user data.",SourceCodester,Automatic Question Paper Generator System,9.8,CRITICAL,0.0041600000113248825,false,,false,false,false,,,false,false,,2023-03-23T09:15:00.000Z,0
CVE-2023-1474,https://securityvulnerability.io/vulnerability/CVE-2023-1474,SourceCodester Automatic Question Paper Generator System GET Parameter manage_question_paper.php sql injection,"A vulnerability exists in the SourceCodester Automatic Question Paper Generator System 1.0, specifically in the GET Parameter Handler component. This flaw allows an attacker to manipulate the 'id' parameter in the 'manage_question_paper.php' file, leading to potential SQL injection attacks. The exploit can be executed remotely, making it particularly concerning for users of this system, as it may allow unauthorized access to sensitive information.",SourceCodester,Automatic Question Paper Generator System,9.8,CRITICAL,0.011049999855458736,false,,false,false,false,,,false,false,,2023-03-17T15:15:00.000Z,0
CVE-2023-1440,https://securityvulnerability.io/vulnerability/CVE-2023-1440,SourceCodester Automatic Question Paper Generator System GET Parameter manage_user.php sql injection,"A vulnerability has been identified in the SourceCodester Automatic Question Paper Generator System 1.0, specifically within the user management function in the file users/user/manage_user.php. This vulnerability allows an attacker to manipulate the 'id' parameter, leading to SQL injection. The potential for remote exploitation exists, posing significant risks to data integrity and security. The details of this vulnerability have been publicly disclosed, highlighting the urgent need for mitigation strategies.",SourceCodester,Automatic Question Paper Generator System,8.8,HIGH,0.007110000122338533,false,,false,false,false,,,false,false,,2023-03-17T07:15:00.000Z,0
CVE-2023-1441,https://securityvulnerability.io/vulnerability/CVE-2023-1441,SourceCodester Automatic Question Paper Generator System GET Parameter view_course.php sql injection,"A vulnerability has been identified in the SourceCodester Automatic Question Paper Generator System version 1.0. This flaw arises from the improper handling of the 'id' parameter in the file admin/courses/view_course.php. An attacker can exploit this weakness remotely by manipulating the GET request, allowing for unauthorized database access and potentially compromising sensitive information. Publicly disclosed, this vulnerability poses a significant risk, making it essential for users to apply necessary security measures.",SourceCodester,Automatic Question Paper Generator System,9.8,CRITICAL,0.011049999855458736,false,,false,false,false,,,false,false,,2023-03-17T07:15:00.000Z,0