CVE-2024-41236 | Kashipara Responsive School Management System 3.2.0 Admin Login Page /smsa/admin_login.php username sql injection

Inserito da Angelo Barbosa | Ago 28, 2024 | CVE

A vulnerability was found in Kashipara Responsive School Management System 3.2.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /smsa/admin_login.php of the component Admin Login Page. The manipulation of the argument username leads to sql injection.

This vulnerability is handled as CVE-2024-41236. The attack may be launched remotely. There is no exploit available.

CVE-2024-41236 | Kashipara Responsive School Management System 3.2.0 Admin Login Page /smsa/admin_login.php username sql injection

Post correlati

CVE-2024-0172 | Dell PowerEdge Server BIOS/Precision Rack BIOS privileges management (dsa-2024-035)

CVE-2024-24573 | WillyXJ facileManager up to 4.5.0 POST Request processPost.php authorization (GHSA-w67q-pp62-j4pf)

CVE-2024-0312 | Skyhigh Client Proxy 4.8.1 Uninstaller improper validation of function hook arguments

CVE-2024-33928 | CodeBard Patron Button and Widgets for Patreon Plugin up to 2.2.0 on WordPress cross site scripting