Shaww

**Name of the Vulnerable Software and Affected Versions** itsourcecode Student Management System version 1.0 **Description** A flaw exists in itsourcecode Student Management System 1.0, specifically within the file `/new adviser.php`. Manipulation of the `Name` argument in an unknown function can lead to SQL injection. This attack can be performed remotely. The exploit has been published. **Recommendations** Apply any available updates or patches for itsourcecode Student Management System version 1.0. As a temporary workaround, consider restricting access to the `/new adviser.php` file. Sanitize the `Name` argument to prevent SQL injection attacks.

**Name of the Vulnerable Software and Affected Versions** itsourcecode Student Management System version 1.0 **Description** A flaw exists in itsourcecode Student Management System 1.0 related to SQL injection. The issue is located in the file `/new school year.php` and involves manipulation of the `sy` argument. This allows for remote attacks. The exploit details have been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** itsourcecode Student Management System version 1.0 **Description** A SQL injection issue exists in the Student Management System due to the manipulation of the `sy` argument within the /promote.php file. This allows for remote attacks. The exploit has been publicly released. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** itsourcecode Student Management System version 1.0 **Description** A flaw exists in itsourcecode Student Management System 1.0. The issue is related to the manipulation of the `grade` argument within the /new grade.php file, leading to a SQL injection condition. This can be exploited remotely. The exploit has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.