CVE-2024-5236 | Campcodes Complete Web-Based School Management System 1.0 teacher_salary_invoice1.php date sql injection

Inserito da Angelo Barbosa | Mag 22, 2024 | CVE

A vulnerability classified as critical was found in Campcodes Complete Web-Based School Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /view/teacher_salary_invoice1.php. The manipulation of the argument date leads to sql injection.

This vulnerability is known as CVE-2024-5236. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-5236 | Campcodes Complete Web-Based School Management System 1.0 teacher_salary_invoice1.php date sql injection

Post correlati

CVE-2024-38215 | Microsoft Windows up to Server 2022 23H2 Cloud Files Mini Filter Driver integer overflow

CVE-2024-31350 | AWP Classifieds Plugin up to 4.3.1 on WordPress authorization

CVE-2024-35169 | AREOI All Bootstrap Blocks Plugin up to 1.3.15 on WordPress cross site scripting

CVE-2024-24116 | Ruijie RG-NBS2009G-P 10.4(1)P2 Release(9736) system/config_menu.htm Privilege Escalation