CVE-2024-34935 | Campcodes Complete Web-Based School Management System 1.0 conversation_history_admin.php conversation_id sql injection

Inserito da Angelo Barbosa | Mag 23, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Campcodes Complete Web-Based School Management System 1.0. Affected by this issue is some unknown functionality of the file /view/conversation_history_admin.php. The manipulation of the argument conversation_id leads to sql injection.

This vulnerability is handled as CVE-2024-34935. The attack may be launched remotely. There is no exploit available.

CVE-2024-34935 | Campcodes Complete Web-Based School Management System 1.0 conversation_history_admin.php conversation_id sql injection

Post correlati

CVE-2023-5973 | Brocade Fabric OS up to 9.1.x Web Interface portName origin validation

CVE-2024-3650 | ElementsKit Elementor Addons Plugin 3.0.7/3.1.2 on WordPress Image Accordion Widget cross site scripting

CVE-2024-29447 | ROS2 Humble Hawksbill default credentials

CVE-2024-21841 | Intel Distribution for GDB Software prior 2024.0 uncontrolled search path (intel-sa-01042)