All 7 CVE vulnerabilities found in Student-Management-System, with AI-generated Chinese analysis, references, and POCs.
Vendor: Cyber-III
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-5671 | Cyber-III Student-Management-System Class Schedule Deletion Endpoint delete_batch.php cross site scripting CWE-79 | 4.3 | Medium | 2026-04-06 |
| CVE-2026-5670 | Cyber-III Student-Management-System upload.php move_uploaded_file unrestricted upload CWE-434 | 6.3 | Medium | 2026-04-06 |
| CVE-2026-5669 | Cyber-III Student-Management-System Parameter login.php sql injection CWE-89 | 7.3 | High | 2026-04-06 |
| CVE-2026-5668 | Cyber-III Student-Management-System add%20notice.php cross site scripting CWE-79 | 2.4 | Low | 2026-04-06 |
| CVE-2026-5644 | Cyber-III Student-Management-System batch-notice.php cross site scripting CWE-79 | 2.4 | Low | 2026-04-06 |
| CVE-2026-5643 | Cyber-III Student-Management-System Admin Add Endpoint notice.php cross site scripting CWE-79 | 2.4 | Low | 2026-04-06 |
| CVE-2026-5642 | Cyber-III Student-Management-System HTTP POST Request update.php improper authorization CWE-285 | 7.3 | High | 2026-04-06 |
All 7 known CVE vulnerabilities affecting Student-Management-System with full Chinese analysis, references, and POCs where available.