Approved changes feed: RSS · Atom

cpe:2.3:a:alle_information_co.,_ltd.:school_manage_system:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorAlle Information Co., Ltd. (a215fe0a-fcd1-5109-99f1-26510c6be02f)
ProductSchool Manage System (b940c45a-55cc-547d-ad72-10eff350e17d)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2020-10507 vulnerable 2026-06-08 05:16:35.224643 ALLE INFORMATION CO., LTD. School Manage System - Security Misconfiguration
CRITICAL (9.8)
The School Manage System before 2020, developed by ALLE INFORMATION CO., LTD., contains a vulnerability of Unrestricted file upload (RCE) , that would allow attackers to gain access in the hosting machine.
Published: 2020-04-15T06:15:22.358Z
Updated: 2024-09-17T00:45:33.709Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-10506 vulnerable 2026-06-08 05:16:35.224269 ALLE INFORMATION CO., LTD. School Manage System - Path Traversal
HIGH (7.5)
The School Manage System before 2020, developed by ALLE INFORMATION CO., LTD., contains a vulnerability of Path Traversal, allowing attackers to access arbitrary files.
Published: 2020-04-15T06:15:21.891Z
Updated: 2024-09-16T20:11:54.141Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-10505 vulnerable 2026-06-08 05:16:35.223048 ALLE INFORMATION CO., LTD. School Manage System - SQL Injection
CRITICAL (9.8)
The School Manage System before 2020, developed by ALLE INFORMATION CO., LTD., contains a vulnerability of SQL Injection, an attacker can use a union based injection query string to get databases schema and username/password.
Published: 2020-04-15T06:15:21.457Z
Updated: 2024-09-17T01:21:26.334Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.