Syntax: kev:true severity:critical epss:>0.95 vendor:cisco patch:false
Filters
Severity
Exploitation
Data Source
Data Quality
Vendor
CWE — Weakness Type
Clear all
Top 20 matches Showing top matches — use filters or a more specific query to narrow
2 CRITICAL1 HIGH17 MEDIUM
CVE-2024-40487
HIGH CVSS 7.6
Find Similar
A Stored Cross Site Scripting (XSS) vulnerability was found in "/view_type.php" of Kashipara Live Membership System v1.0, which allows remote attackers to execute arbitrary code via membershipType par
lopalopa
NVD RRF 0.016
CVE-2024-54936
MEDIUM CVSS 5.4
Find Similar
A Stored Cross-Site Scripting (XSS) vulnerability was found in /send_message.php of Kashipara E-learning Management System v1.0. This vulnerability allows remote attackers to execute arbitrary scripts
lopalopa
NVD RRF 0.016
CVE-2024-42770
MEDIUM CVSS 4.7
Find Similar
A Stored Cross Site Scripting (XSS) vulnerability was found in "/core/signup_user.php" of Kashipara Hotel Management System v1.0, which allows remote attackers to execute arbitrary code via the "user_
jayesh
NVD RRF 0.016
CVE-2024-50839
MEDIUM CVSS 5.4
Find Similar
A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/add_subject.php in KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to execute arbit
lopalopa
NVD RRF 0.016
CVE-2024-41240
MEDIUM CVSS 6.1
Find Similar
A Reflected Cross Site Scripting (XSS) vulnerability was found in " /smsa/teacher_login.php" in Kashipara Responsive School Management System v3.2.0, which allows remote attackers to execute arbitrary
lopalopa
NVD RRF 0.015
CVE-2024-42769
MEDIUM CVSS 6.1
Find Similar
A Reflected Cross Site Scripting (XSS) vulnerability was found in "/core/signup_user.php " of Kashipara Hotel Management System v1.0, which allows remote attackers to execute arbitrary code via "user_
jayesh
NVD RRF 0.015
CVE-2024-50838
MEDIUM CVSS 5.4
Find Similar
A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/department.php in KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to execute arbitr
lopalopa
NVD RRF 0.015
CVE-2024-41242
MEDIUM CVSS 6.1
Find Similar
A Reflected Cross Site Scripting (XSS) vulnerability was found in /smsa/student_login.php in Kashipara Responsive School Management System v3.2.0, which allows remote attackers to execute arbitrary co
lopalopa
NVD RRF 0.015
CVE-2024-40486
CRITICAL CVSS 9.8
Find Similar
A SQL injection vulnerability in "/index.php" of Kashipara Live Membership System v1.0 allows remote attackers to execute arbitrary SQL commands and bypass Login via the email or password Login parame
lopalopa
NVD RRF 0.014
CVE-2024-40478
MEDIUM CVSS 5.4
Find Similar
A Stored Cross Site Scripting (XSS) vulnerability was found in "/admin/afeedback.php" in Kashipara Online Exam System v1.0, which allows remote attackers to execute arbitrary code via "rname" and "ema
jayesh
NVD RRF 0.014
CVE-2024-50837
MEDIUM CVSS 5.4
Find Similar
A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/admin_user.php in KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to execute arbitr
lopalopa
NVD RRF 0.014
CVE-2024-41241
MEDIUM CVSS 6.1
Find Similar
A Reflected Cross Site Scripting (XSS) vulnerability was found in " /smsa/admin_login.php" in Kashipara Responsive School Management System v3.2.0, which allows remote attackers to execute arbitrary c
lopalopa
NVD RRF 0.014
CVE-2024-40482
CRITICAL CVSS 9.8
Find Similar
An Unrestricted file upload vulnerability was found in "/Membership/edit_member.php" of Kashipara Live Membership System v1.0, which allows attackers to execute arbitrary code via uploading a crafted
lopalopa
NVD RRF 0.014
CVE-2024-54919
MEDIUM CVSS 5.4
Find Similar
A Stored Cross Site Scripting (XSS ) was found in /teacher_avatar.php of kashipara E-learning Management System v1.0. This vulnerability allows remote attackers to execute arbitrary java script via th
lopalopa
NVD RRF 0.014
CVE-2024-42771
MEDIUM CVSS 4.8
Find Similar
A Stored Cross Site Scripting (XSS) vulnerability was found in " /admin/edit_room_controller.php" of the Kashipara Hotel Management System v1.0, which allows remote attackers to execute arbitrary code
jayesh
NVD RRF 0.013
CVE-2024-50842
MEDIUM CVSS 5.4
Find Similar
A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/school_year.php in KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to execute arbit
lopalopa
NVD RRF 0.013
CVE-2024-54935
MEDIUM CVSS 5.4
Find Similar
A Stored Cross-Site Scripting (XSS) vulnerability was found in /send_message_teacher_to_student.php of kashipara E-learning Management System v1.0. This vulnerability allows remote attackers to execut
lopalopa
NVD RRF 0.013
CVE-2024-42787
MEDIUM CVSS 6.1
Find Similar
A Stored Cross Site Scripting (XSS) vulnerability was found in "/music/ajax.php?action=save_playlist" in Kashipara Music Management System v1.0. This vulnerability allows remote attackers to execute a
lopalopa
NVD RRF 0.013
CVE-2024-48709
MEDIUM CVSS 5.4
Find Similar
CodeAstro Membership Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via the membershipType parameter in edit_type.php
codeastro
NVD RRF 0.013
CVE-2025-26158
MEDIUM CVSS 5.6
Find Similar
A Stored Cross-Site Scripting (XSS) vulnerability was discovered in the manage-employee.php page of Kashipara Online Attendance Management System V1.0. This vulnerability allows remote attackers to ex
kashipara
NVD RRF 0.013
Page 1+ Next →