A vulnerability classified as critical was found in SourceCodester Simple Student Attendance System 1.0. This vulnerability affects unknown code of the file ajax-api.php?action=save_attendance. The manipulation of the argument class_id leads to sql injection.
This vulnerability was named CVE-2023-6658. The attack needs to be approached within the local network. Furthermore, there is an exploit available.