This page lists publicly disclosed CVE vulnerabilities affecting daycloud studentmanage (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-50583 | StudentManage v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the Add A New Student module. | [email protected] | 4.8 | 0.17% | 2025-07-18 | 2025-09-09 |
| CVE-2025-50582 | StudentManage v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the Add A New Course module. | [email protected] | 4.8 | 0.17% | 2025-07-18 | 2025-09-09 |
| CVE-2025-50584 | StudentManage v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the Add A New Teacher module. | [email protected] | 4.8 | 0.17% | 2025-07-18 | 2025-09-09 |
| CVE-2025-50585 | StudentManage v1.0 was discovered to contain a SQL injection vulnerability via the component /admin/adminStudentUrl. | [email protected] | 8.8 | 0.24% | 2025-07-18 | 2025-09-09 |
| CVE-2025-50586 | StudentManage v1.0 was discovered to contain Cross-Site Request Forgery (CSRF). | [email protected] | 6.5 | 0.05% | 2025-07-18 | 2025-09-09 |