CVE-2024-50824 | Kashipara E-Learning Management System Project 1.0 /admin/class.php class_name sql injection

Inserito da Angelo Barbosa | Nov 14, 2024 | CVE

A vulnerability classified as critical has been found in Kashipara E-Learning Management System Project 1.0. Affected is an unknown function of the file /admin/class.php. The manipulation of the argument class_name leads to sql injection.

This vulnerability is traded as CVE-2024-50824. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-50824 | Kashipara E-Learning Management System Project 1.0 /admin/class.php class_name sql injection

Post correlati

CVE-2024-27319 | onnx up to 1.15.0 ONNX_ASSERT/ONNX_ASSERTM out-of-bounds

CVE-2024-7025 | Google Chrome up to 129.0.6668.70 Layout integer overflow

CVE-2024-4702 | Mega Elements Plugin up to 1.2.1 on WordPress Button Widget cross site scripting

CVE-2023-6633 | Site Notes Plugin up to 2.0.0 on WordPress Admin Note cross-site request forgery