CVE-2024-48325 | Portabilis i-Educar 2.8.0 getDocuments instituicao_id sql injection

Inserito da Angelo Barbosa | Nov 7, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Portabilis i-Educar 2.8.0. This issue affects the function getDocuments of the file /module/Api/InstituicaoDocumentacao?oper=get&resource=getDocuments&instituicao_id. The manipulation of the argument instituicao_id leads to sql injection.

The identification of this vulnerability is CVE-2024-48325. The attack may be initiated remotely. There is no exploit available.

CVE-2024-48325 | Portabilis i-Educar 2.8.0 getDocuments instituicao_id sql injection

Post correlati

CVE-2024-8139 | itsourcecode E-Commerce Website 1.0 search_list.php user sql injection

CVE-2023-6343 | Tyler Technologies Court Case Management Plus 2023-11-01 tiffserver/tssp.aspx FN/PN improper authentication

CVE-2023-45066 | Smackcoders Export All Plugin up to 2.4.1 on WordPress information disclosure

CVE-2024-10192 | PHPGurukul IFSC Code Finder Project 1.0 search.php cross site scripting