Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

University Management System — Vulnerabilities & Security Advisories 17

All 17 CVE vulnerabilities found in University Management System, with AI-generated Chinese analysis, references, and POCs.

This page aggregates Common Weakness Enumeration (CWE) entries associated with vulnerabilities in the University Management System, a software solution typically provided by various vendors for educational institutions. It compiles a comprehensive list of security flaws, including authentication bypasses, injection attacks, and access control issues, covering data from January 2018 through December 2023. Readers can utilize this resource to track vendor security advisories over time, gain a deeper understanding of prevalent weakness classes affecting higher education infrastructure, and review the historical vulnerability landscape of the product to assess risk exposure. The collected data serves as a reference for security researchers, system administrators, and IT directors seeking to identify known defects and prioritize remediation efforts within their university environments. By centralizing information on these weaknesses, the page facilitates a clearer view of the security posture of University Management Systems, enabling stakeholders to correlate specific CVEs with broader CWE categories. This aggregation helps in recognizing patterns in how developers address security flaws and highlights areas where consistent vulnerabilities may persist across different updates or vendor releases. Users are encouraged to cross-reference this data with official vendor statements and current patches to ensure the integrity and confidentiality of student and administrative data. The focus remains on factual aggregation and analysis, providing a neutral and structured overview of the security challenges inherent in managing academic and operational data through these specific software platforms.

Vendor: CodeAstro

CVE IDTitleCVSSSeverityPublished
CVE-2026-4474 itsourcecode University Management System admin_single_student_update.php cross site scripting CWE-79 2.4 Low2026-03-20
CVE-2026-4356 itsourcecode University Management System add_result.php cross site scripting CWE-79 2.4 Low2026-03-18
CVE-2026-3982 itsourcecode University Management System view_result.php cross site scripting CWE-79 4.3 Medium2026-03-12
CVE-2026-3944 itsourcecode University Management System att_add.php sql injection CWE-89 7.3 High2026-03-11
CVE-2026-3765 itsourcecode University Management System att_single_view.php sql injection CWE-89 7.3 High2026-03-08
CVE-2026-3760 itsourcecode University Management System view_result.php sql injection CWE-89 7.3 High2026-03-08
CVE-2026-3747 itsourcecode University Management System add_result.php sql injection CWE-89 7.3 High2026-03-08
CVE-2026-3740 itsourcecode University Management System admin_search_student.php sql injection CWE-89 7.3 High2026-03-08
CVE-2026-3413 itsourcecode University Management System admin_single_student.php sql injection CWE-89 7.3 High2026-03-02
CVE-2026-3412 itsourcecode University Management System att_single_view.php cross site scripting CWE-79 4.3 Medium2026-03-02
CVE-2026-3411 itsourcecode University Management System admin_single_student_update.php sql injection CWE-89 7.3 High2026-03-02
CVE-2024-6958 itsourcecode University Management System Avatar File st_update.php unrestricted upload CWE-434 6.3 Medium2024-07-21
CVE-2024-6957 itsourcecode University Management System Login functions.php sql injection CWE-89 7.3 High2024-07-21
CVE-2024-6956 itsourcecode University Management System view_cgpa.php sql injection CWE-89 6.3 Medium2024-07-21
CVE-2024-6952 itsourcecode University Management System sql injection CWE-89 6.3 Medium2024-07-21
CVE-2024-1266 CodeAstro University Management System Student Registration Form st_reg.php cross site scripting CWE-79 2.4 Low2024-02-07
CVE-2024-1265 CodeAstro University Management System Attendance Management att_add.php cross site scripting CWE-79 2.4 Low2024-02-07

All 17 known CVE vulnerabilities affecting University Management System with full Chinese analysis, references, and POCs where available.