CVE-2024-12891 | code-projects Online Exam Mastering System 1.0 account.php?q=quiz&step=2 eid sql injection

Inserito da Angelo Barbosa | Dic 21, 2024 | CVE

A vulnerability classified as critical has been found in code-projects Online Exam Mastering System 1.0. Affected is an unknown function of the file /account.php?q=quiz&step=2. The manipulation of the argument eid leads to sql injection.

This vulnerability is traded as CVE-2024-12891. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-12891 | code-projects Online Exam Mastering System 1.0 account.php?q=quiz&step=2 eid sql injection

Post correlati

CVE-2024-28889 | F5 BIG-IP up to 15.1.10/16.1.4/17.1.1 SSL Profile denial of service (K000139404)

CVE-2024-33652 | Real Big Plugins Client Dash Plugin up to 2.2.1 on WordPress authorization

CVE-2024-3444 | Wangshen SecGate 3600 up to 20240408 ?g=net_pro_keyword_import_save reqfile unrestricted upload

CVE-2023-42878 | Apple iOS/iPadOS App access control