Daycloud

daycloud

5 CVEs • 1 product

Products (1)

Click to collapse

Toggle

CVEs (5)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-50583 1Daycloud 1Studentmanage Sep 9, 2025 Jul 18, 2025 N/A· v4 4.8 MEDIUM· v3 N/A· v2 StudentManage v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the Add A New Student module.
CVE-2025-50582 1Daycloud 1Studentmanage Sep 9, 2025 Jul 18, 2025 N/A· v4 4.8 MEDIUM· v3 N/A· v2 StudentManage v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the Add A New Course module.
CVE-2025-50584 1Daycloud 1Studentmanage Sep 9, 2025 Jul 18, 2025 N/A· v4 4.8 MEDIUM· v3 N/A· v2 StudentManage v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the Add A New Teacher module.
CVE-2025-50585 1Daycloud 1Studentmanage Sep 9, 2025 Jul 18, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 StudentManage v1.0 was discovered to contain a SQL injection vulnerability via the component /admin/adminStudentUrl.
CVE-2025-50586 1Daycloud 1Studentmanage Sep 9, 2025 Jul 18, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 StudentManage v1.0 was discovered to contain Cross-Site Request Forgery (CSRF).