CVE-2024-12360 | code-projects Online Class and Exam Scheduling System 1.0 class_update.php id sql injection

Inserito da Angelo Barbosa | Dic 8, 2024 | CVE

A vulnerability was found in code-projects Online Class and Exam Scheduling System 1.0. It has been rated as critical. This issue affects some unknown processing of the file class_update.php. The manipulation of the argument id leads to sql injection.

The identification of this vulnerability is CVE-2024-12360. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-12360 | code-projects Online Class and Exam Scheduling System 1.0 class_update.php id sql injection

Post correlati

CVE-2024-8783 | OpenTibiaBR MyAAC up to 0.8.16 Post Reply new_post.php post_topic cross site scripting (Issue 121)

CVE-2023-41597: EyouCms cross site scripting

CVE-2024-31470 | Aruba InstantOS/ArubaOS PAPI buffer overflow (ARUBA-PSA-2024-006)

CVE-2024-4731 | Campcodes Legal Case Management System 1.0 /admin/role slug cross site scripting