CVE-2024-34931 | Campcodes Complete Web-Based School Management System 1.0 update_subject.php name sql injection

Inserito da Angelo Barbosa | Mag 23, 2024 | CVE

A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /model/update_subject.php. The manipulation of the argument name leads to sql injection.

This vulnerability was named CVE-2024-34931. The attack can be initiated remotely. There is no exploit available.

CVE-2024-34931 | Campcodes Complete Web-Based School Management System 1.0 update_subject.php name sql injection

Post correlati

CVE-2023-7279 | Secure Systems Engineering Connaisseur up to 3.3.0 Delegation Name targets_schema.json redos (ID 1407)

CVE-2024-8514 | Prisna GWT Plugin up to 1.4.11 on WordPress prisna_import deserialization

CVE-2023-51939 | Relic relic-toolkit 0.6.0 relic_cp_bbs.c cp_bbs_sig Privilege Escalation

CVE-2024-34384 | SinaExtra Sina Extension for Elementor Plugin up to 3.5.1 on WordPress path traversal