Scholars tracking system

This hub aggregates every CVE we track for Scholars tracking system, a product in the web cms plugins space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 11 most recently published vulnerabilities affecting Scholars tracking system.

• CVE-2025-70151code-projects Scholars Tracking System 1.0 allows an authenticated attacker to achieve remote code execution via unrestricted file upload. The endpoints update_profile_picture.php and upload_pictur...8.8Feb 18, 2026
• CVE-2025-70152code-projects Community Project Scholars Tracking System 1.0 is vulnerable to SQL Injection in the admin user management endpoints /admin/save_user.php and /admin/update_user.php. These endpoints l...9.8Feb 18, 2026
• CVE-2025-14951code-projects Scholars Tracking System home.php sql injection7.3Dec 19, 2025
• CVE-2025-14950code-projects Scholars Tracking System delete_post.php sql injection7.3Dec 19, 2025
• CVE-2025-14940code-projects Scholars Tracking System delete_user.php sql injection7.3Dec 19, 2025
• CVE-2024-24092SQL Injection vulnerability in Code-projects.org Scholars Tracking System 1.0 allows attackers to run arbitrary code via login.php.7.8Mar 12, 2024
• CVE-2024-24093SQL Injection vulnerability in Code-projects Scholars Tracking System 1.0 allows attackers to run arbitrary code via Personal Information Update information.9.8Mar 12, 2024
• CVE-2024-24101Code-projects Scholars Tracking System 1.0 is vulnerable to SQL Injection under Eligibility Information Update.9.8Mar 12, 2024
• CVE-2024-24097Cross Site Scripting (XSS) vulnerability in Code-projects Scholars Tracking System 1.0 allows attackers to run arbitrary code via the News Feed.5.4Mar 12, 2024
• CVE-2024-24098Code-projects Scholars Tracking System 1.0 is vulnerable to SQL Injection via the News Feed.7.8Mar 5, 2024
• CVE-2024-24099Code-projects Scholars Tracking System 1.0 is vulnerable to SQL Injection under Employment Status Information Update.5.4Feb 27, 2024