OR
     *cpe:2.3:a:phpgurukul:student_project_allocation_system:1.0:*:*:*:*:*:*:*

OR
     *cpe:2.3:a:projectworlds:student_project_allocation_system:1.0:*:*:*:*:*:*:*

OR
     *cpe:2.3:a:phpgurukul:student_project_allocation_system:1.0:*:*:*:*:*:*:*

NIST AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

NIST CWE-89

https://github.com/jadu101/CVE/blob/main/phpgurukul_student_project_allocation_system_move_up_project_sqli.md No Types Assigned

https://github.com/jadu101/CVE/blob/main/phpgurukul_student_project_allocation_system_move_up_project_sqli.md Exploit, Third Party Advisory

https://vuldb.com/?ctiid.281966 No Types Assigned

https://vuldb.com/?ctiid.281966 Permissions Required, Third Party Advisory, VDB Entry

https://vuldb.com/?id.281966 No Types Assigned

https://vuldb.com/?id.281966 Third Party Advisory, VDB Entry

https://vuldb.com/?submit.431984 No Types Assigned

https://vuldb.com/?submit.431984 Third Party Advisory, VDB Entry

VulDB (AV:N/AC:L/Au:S/C:P/I:P/A:P)

VulDB AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

VulDB CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

VulDB CWE-89

A vulnerability was found in Project Worlds Student Project Allocation System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /student/project_selection/move_up_project.php of the component Project Selection Page. The manipulation of the argument up leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

VulDB https://github.com/jadu101/CVE/blob/main/phpgurukul_student_project_allocation_system_move_up_project_sqli.md [No types assigned]

VulDB https://vuldb.com/?ctiid.281966 [No types assigned]

VulDB https://vuldb.com/?id.281966 [No types assigned]

VulDB https://vuldb.com/?submit.431984 [No types assigned]