← Back

Free School Management Software

free_school_management_software

Vendor: Free School Management Software Project • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-46013
1Free School Management Software Project
1Free School Management Software
Jun 17, 2026
Jan 18, 2022
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
An unrestricted file upload vulnerability exists in Sourcecodester Free school management software 1.0. An attacker can leverage this vulnerability to enable remote code execution on the affected web server. Once a php w...Show more
An unrestricted file upload vulnerability exists in Sourcecodester Free school management software 1.0. An attacker can leverage this vulnerability to enable remote code execution on the affected web server. Once a php webshell containing "<?php system($_GET["cmd"]); ?>" gets uploaded it is saved into /uploads/exam_question/ directory, and is accessible by all users.Show less