school software vulnerabilities
vulnerabilities.aspcode.net
Searching school software vulnerabilities
NetOp School 1.5 allows local users to bypass a
administration
|
restrictions
|
starting
|
version
|
student
|
logging
|
closing
|
School
|
allows
|
bypass
|
access
|
users
|
local
|
NetOp
|
into
|
then
|
NetOp School 1.5 allows local users to bypass access restrictions on the administration version by logging into the student version, closing the student version, then starting the administration version.
Cross-site scripting (XSS) vulnerability in def
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in default.asp in Caloris Planitia E-School Management System 1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the msg parameter.
SQL injection vulnerability in MyWeb Portal Off
vulnerability
|
arbitrary
|
attackers
|
injection
|
Standard
|
commands
|
Citizen
|
execute
|
vectors
|
Medical
|
unknown
|
Edition
|
remote
|
attack
|
Public
|
Office
|
Portal
|
allows
|
School
|
MyWeb
|
Light
|
SQL
|
via
|
SQL injection vulnerability in MyWeb Portal Office, Standard Edition, Public Edition, Medical Edition, Citizen Edition, School Edition, and Light Edition allows remote attackers to execute arbitrary SQL commands via unknown attack vectors.
SQL injection vulnerability in user logon authe
authentication
|
Cool_CoolDexe
|
vulnerability
|
injection
|
handling
|
request
|
Manager
|
logon
|
Cool
|
user
|
SQL
|
SQL injection vulnerability in user logon authentication request handling in Cool_CoolD.exe in Cool Manager 5.0 (5,60,90,28) and Cool Messenger Office/School Server 5.5 (5,65,12,13) allows remote attackers to execute arbitrary SQL commands via the username field.
Buffer overflow in NetSupport Manager (NSM) Cli
NetSupport
|
overflow
|
Manager
|
Buffer
|
Buffer overflow in NetSupport Manager (NSM) Client 10.00 and 10.20, and NetSupport School Student (NSS) 9.00, allows remote NSM servers to cause a denial of service or possibly execute arbitrary code via crafted data in the configuration exchange phase of an initial connection setup. NOTE: a vendor statement, which is too vague to be sure that it is for this particular issue, says that only a denial of service is possible.
Software vulnerabilities results 1 to 6 of 6
Page:
1