A vulnerability was found in code-projects Simple School Managment System 1.0. It has been rated as critical. This issue affects some unknown processing of the file School/index.php. The manipulation of the argument apass leads to sql injection.

The identification of this vulnerability is CVE-2024-25304. The attack needs to be approached within the local network. There is no exploit available.