CVE-2024-5390 | itsourcecode Online Student Enrollment System 1.0 listofstudent.php lname sql injection

Inserito da Angelo Barbosa | Mag 26, 2024 | CVE

A vulnerability, which was classified as critical, was found in itsourcecode Online Student Enrollment System 1.0. Affected is an unknown function of the file listofstudent.php. The manipulation of the argument lname leads to sql injection.

This vulnerability is traded as CVE-2024-5390. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-5390 | itsourcecode Online Student Enrollment System 1.0 listofstudent.php lname sql injection

Post correlati

CVE-2024-1321 | EventPrime Plugin up to 3.4.2 on WordPress Booking Payment improper authentication

CVE-2023-41038 | FirebirdSQL Firebird prior 4.0.4.2981/5.0.0.1176 SET BIND Statement allocation of resources (GHSA-6fv8-8rwr-9692)

CVE-2024-26680 | Linux Kernel up to 6.1.77/6.6.16/6.7.4 atlantic kernel/dma/debug.c aq_ring_hwts_rx_alloc use after free

CVE-2024-39555 | Juniper Networks Junos OS/Junos OS Evolved Routing Protocol Daemon exceptional condition (JSA83015)