CVE-2024-4800 | Kashipara College Management System 1.0 submit_student.php date_of_birth sql injection

Inserito da Angelo Barbosa | Mag 12, 2024 | CVE

A vulnerability has been found in Kashipara College Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file submit_student.php. The manipulation of the argument date_of_birth leads to sql injection.

This vulnerability was named CVE-2024-4800. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-4800 | Kashipara College Management System 1.0 submit_student.php date_of_birth sql injection

Post correlati

CVE-2023-47731 | IBM QRadar Suite Software/Cloud Pak for Security Web UI cross site scripting (XFDB-272203)

CVE-2024-49368 | 0xJacky Nginx-UI up to 2.0.0-beta.35 exec.Command input validation (GHSA-66m6-27r9-77vm)

CVE-2024-5428 | SourceCodester Simple Online Bidding System 1.0 HTTP POST Request index.php save_product cross-site request forgery

CVE-2024-38474 | Apache HTTP Server up to 2.4.59 mod_rewrite encoding error