This page lists publicly disclosed CVE vulnerabilities affecting code-projects student_enrollment (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-7191 | A vulnerability has been found in code-projects Student Enrollment System 1.0 and classified as critical. This vulnerability affects unknown code of the file /login.php. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. | [email protected] | 5.5 | 0.40% | 2025-07-08 | 2026-04-29 |
| CVE-2023-41505 | An arbitrary file upload vulnerability in the Add Student's Profile Picture function of Student Enrollment In PHP v1.0 allows attackers to execute arbitrary code via uploading a crafted PHP file. | [email protected] | 9.8 | 0.79% | 2024-03-13 | 2025-05-28 |
| CVE-2023-41504 | SQL Injection vulnerability in Student Enrollment In PHP 1.0 allows attackers to run arbitrary code via the Student Search function. | [email protected] | 8.8 | 0.68% | 2024-03-13 | 2025-05-28 |
| CVE-2023-41503 | Student Enrollment In PHP v1.0 was discovered to contain a SQL injection vulnerability via the Login function. | [email protected] | 9.8 | 0.57% | 2024-03-07 | 2025-05-05 |
| CVE-2023-41506 | An arbitrary file upload vulnerability in the Update/Edit Student's Profile Picture function of Student Enrollment In PHP v1.0 allows attackers to execute arbitrary code via uploading a crafted PHP file. | [email protected] | 9.8 | 0.88% | 2024-02-27 | 2025-11-20 |