CVE-2024-5392 | itsourcecode Online Student Enrollment System 1.0 editSubject.php id sql injection

Inserito da Angelo Barbosa | Mag 26, 2024 | CVE

A vulnerability was found in itsourcecode Online Student Enrollment System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file editSubject.php. The manipulation of the argument id leads to sql injection.

This vulnerability is handled as CVE-2024-5392. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-5392 | itsourcecode Online Student Enrollment System 1.0 editSubject.php id sql injection

Post correlati

CVE-2024-4279 | Tutor LMS Plugin up to 2.7.0 on WordPress Course resource injection

CVE-2023-50147 | Totolink A3700R 9.1.2u.5822_B20200513 cstecgi.cgi setDiagnosisCfg Privilege Escalation

CVE-2024-21972 | AMD Software Adrenalin Edition/Software Pro Edition User Mode Driver for DirectX 11 out-of-bounds write

CVE-2024-1069 | Contact Form Entries Plugin up to 1.3.2 on WordPress unrestricted upload