CyberSec.Space Logo
Back to CVE Browser

CVE-2017-15957

HIGH
8.8
CVSS Severity Score
EPSS Score0.0880%
EPSS Percentile13.01th
PublishedOct 29, 2017
Last ModifiedMay 13, 2026

Vulnerability Description

my_profile.php in Ingenious School Management System 2.3.0 allows a student or teacher to upload an arbitrary file.

Affected Platforms (CPE)

πŸ“¦
Ingenious School Management System Project

Ingenious School Management System

= 2.3.0

References & Advisories

πŸ”— https://packetstormsecurity.com/files/144431/Ingenious-School-Management-System-2.3.0-Arbitrary-File-Upload.html
πŸ”— https://www.exploit-db.com/exploits/43102/
πŸ”— https://packetstormsecurity.com/files/144431/Ingenious-School-Management-System-2.3.0-Arbitrary-File-Upload.html
πŸ”— https://www.exploit-db.com/exploits/43102/

Related Vulnerabilities

CVE-2017-165619.8

/view/friend_profile.php in Ingenious School Management System 2.3.0 is vulnerable to Boolean-based and Time-based SQL injection i...

CVE-2017-332410.0

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management component of Oracle Primavera Products Suite (subcompone...

CVE-2017-379110.0

A vulnerability in the web-based GUI of Cisco Prime Home could allow an unauthenticated, remote attacker to bypass authentication ...

CVE-2017-514510.0

An issue was discovered in Carlo Gavazzi VMU-C EM prior to firmware Version A11_U05, and VMU-C PV prior to firmware Version A17. S...