本頁列出影響 code-projects student_enrollment 的已公開 CVE 漏洞(透過 NVD CPE 關聯)。每列包含嚴重程度評分、摘要與發布日期,便於識別與分析安全議題。
| CVE | 摘要 | 來源 | 最高 CVSS | EPSS % | 公開時間 | 更新時間 |
|---|---|---|---|---|---|---|
| CVE-2025-7191 | A vulnerability has been found in code-projects Student Enrollment System 1.0 and classified as critical. This vulnerability affects unknown code of the file /login.php. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. | [email protected] | 5.5 | 0.40% | 2025-07-08 | 2026-06-17 |
| CVE-2023-41505 | An arbitrary file upload vulnerability in the Add Student's Profile Picture function of Student Enrollment In PHP v1.0 allows attackers to execute arbitrary code via uploading a crafted PHP file. | [email protected] | 9.8 | 0.79% | 2024-03-13 | 2026-06-17 |
| CVE-2023-41504 | SQL Injection vulnerability in Student Enrollment In PHP 1.0 allows attackers to run arbitrary code via the Student Search function. | [email protected] | 8.8 | 0.68% | 2024-03-13 | 2026-06-17 |
| CVE-2023-41503 | Student Enrollment In PHP v1.0 was discovered to contain a SQL injection vulnerability via the Login function. | [email protected] | 9.8 | 0.57% | 2024-03-07 | 2026-06-17 |
| CVE-2023-41506 | An arbitrary file upload vulnerability in the Update/Edit Student's Profile Picture function of Student Enrollment In PHP v1.0 allows attackers to execute arbitrary code via uploading a crafted PHP file. | [email protected] | 9.8 | 0.88% | 2024-02-27 | 2026-06-17 |