Online Grading System

online_grading_system

Vendor: Online Grading System Project • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-31650 1Online Grading System Project 1Online Grading System Jun 17, 2026 Dec 16, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A SQL injection vulnerability in Sourcecodester Online Grading System 1.0 allows remote attackers to execute arbitrary SQL commands via the uname parameter.
CVE-2019-18344 1Online Grading System Project 1Online Grading System Jun 17, 2026 Oct 23, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Sourcecodester Online Grading System 1.0 is vulnerable to unauthenticated SQL injection and can allow remote attackers to execute arbitrary SQL commands via the student, instructor, department, room, class, or user page...Show more Sourcecodester Online Grading System 1.0 is vulnerable to unauthenticated SQL injection and can allow remote attackers to execute arbitrary SQL commands via the student, instructor, department, room, class, or user page (id or classid parameter).Show less
CVE-2019-18280 1Online Grading System Project 1Online Grading System Jun 17, 2026 Oct 23, 2019 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Sourcecodester Online Grading System 1.0 is affected by a Cross Site Request Forgery vulnerability due to a lack of CSRF protection. This could lead to an attacker tricking the administrator into executing arbitrary code...Show more Sourcecodester Online Grading System 1.0 is affected by a Cross Site Request Forgery vulnerability due to a lack of CSRF protection. This could lead to an attacker tricking the administrator into executing arbitrary code via a crafted HTML page, as demonstrated by a Create User action at the admin/modules/user/controller.php?action=add URI.Show less