CVEブラウザに戻る

CVE-2017-15957

HIGH

8.8

CVSS Severity Score

EPSS Score0.0880%

EPSS Percentile13.01th

Published2017年10月29日

Last Modified2026年5月13日

Vulnerability Description

my_profile.php in Ingenious School Management System 2.3.0 allows a student or teacher to upload an arbitrary file.

Affected Platforms (CPE)

📦

Ingenious School Management System Project

Ingenious School Management System

= 2.3.0

References & Advisories

🔗 https://packetstormsecurity.com/files/144431/Ingenious-School-Management-System-2.3.0-Arbitrary-File-Upload.html

🔗 https://www.exploit-db.com/exploits/43102/

🔗 https://packetstormsecurity.com/files/144431/Ingenious-School-Management-System-2.3.0-Arbitrary-File-Upload.html

🔗 https://www.exploit-db.com/exploits/43102/

関連する脆弱性情報

CVE-2017-165619.8

/view/friend_profile.php in Ingenious School Management System 2.3.0 is vulnerable to Boolean-based and Time-based SQL injection i...

CVE-2017-514510.0

An issue was discovered in Carlo Gavazzi VMU-C EM prior to firmware Version A11_U05, and VMU-C PV prior to firmware Version A17. S...

CVE-2017-278510.0

An exploitable buffer overflow exists in the psnotifyd application of the Pharos PopUp printer client version 9.0. A specially cra...

CVE-2017-278810.0

A buffer overflows exists in the psnotifyd application of the Pharos PopUp printer client version 9.0. A specially crafted packet ...