Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Dino Physics School Assistant Project Subscribe
Total 12 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-35345 1 Dino Physics School Assistant Project 1 Dino Physics School Assistant 2025-04-11 N/A 5.4 MEDIUM
A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts unidentified code within the file /classes/Users.php. Manipulating the argument id results in cross-site scripting.
CVE-2024-35354 1 Dino Physics School Assistant Project 1 Dino Physics School Assistant 2025-04-11 N/A 9.8 CRITICAL
A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=save_category. Manipulating the argument id can result in SQL injection.
CVE-2024-35355 1 Dino Physics School Assistant Project 1 Dino Physics School Assistant 2025-04-11 N/A 9.8 CRITICAL
A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=delete_category. Manipulating the argument id can result in SQL injection.
CVE-2024-35356 1 Dino Physics School Assistant Project 1 Dino Physics School Assistant 2025-04-11 N/A 6.3 MEDIUM
A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=save_item. Manipulating the argument id can result in SQL injection.
CVE-2024-35357 1 Dino Physics School Assistant Project 1 Dino Physics School Assistant 2025-04-11 N/A 5.3 MEDIUM
A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=delete_item. Manipulating the argument id can result in SQL injection.
CVE-2024-35351 1 Dino Physics School Assistant Project 1 Dino Physics School Assistant 2025-04-11 N/A 5.4 MEDIUM
A vulnerability has been discovered in Diño Physics School Assistant version 2.3. This vulnerability impacts unidentified code within the file /classes/SystemSettings.php?f=update_settings. Manipulating the parameter name results in cross-site scripting.
CVE-2024-35350 1 Dino Physics School Assistant Project 1 Dino Physics School Assistant 2025-04-11 N/A 9.8 CRITICAL
A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /admin/?page=borrow/view_borrow. Manipulating the argument id can result in SQL injection.
CVE-2024-35358 1 Dino Physics School Assistant Project 1 Dino Physics School Assistant 2025-04-11 N/A 6.5 MEDIUM
A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=view_category. Manipulating the argument id can result in SQL injection.
CVE-2024-35352 1 Dino Physics School Assistant Project 1 Dino Physics School Assistant 2025-04-11 N/A 6.1 MEDIUM
A vulnerability has been discovered in Diño Physics School Assistant version 2.3. This vulnerability impacts unidentified code within the file /classes/Users.php?f=save. Manipulating the parameter middlename results in cross-site scripting.
CVE-2024-35353 1 Dino Physics School Assistant Project 1 Dino Physics School Assistant 2025-04-11 N/A 9.8 CRITICAL
A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Users.php?f=save. Manipulating the argument id can result in improper authorization.
CVE-2024-35359 1 Dino Physics School Assistant Project 1 Dino Physics School Assistant 2024-11-21 N/A 9.8 CRITICAL
A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=view_item. Manipulating the argument id can result in SQL injection.
CVE-2024-35349 1 Dino Physics School Assistant Project 1 Dino Physics School Assistant 2024-11-21 N/A 9.8 CRITICAL
A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /admin/category/view_category.php. Manipulating the argument id can result in SQL injection.