Filtered by vendor Kashipara Subscriptions
Filtered by product Online Exam System Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-40480 2 Jayesh, Kashipara 2 Online Exam System, Online Exam System 2024-08-22 9.8 Critical
A Broken Access Control vulnerability was found in /admin/update.php and /admin/dashboard.php in Kashipara Online Exam System v1.0, which allows remote unauthenticated attackers to view administrator dashboard and delete valid user accounts via the direct URL access.
CVE-2024-40479 1 Kashipara 1 Online Exam System 2024-08-13 8.1 High
A SQL injection vulnerability in "/admin/quizquestion.php" in Kashipara Online Exam System v1.0 allows remote attackers to execute arbitrary SQL commands via the "eid" parameter.