CVE-2024-5395 | itsourcecode Online Student Enrollment System 1.0 listofinstructor.php FullName sql injection

Inserito da Angelo Barbosa | Mag 26, 2024 | CVE

A vulnerability was found in itsourcecode Online Student Enrollment System 1.0. It has been rated as critical. This issue affects some unknown processing of the file listofinstructor.php. The manipulation of the argument FullName leads to sql injection.

The identification of this vulnerability is CVE-2024-5395. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-5395 | itsourcecode Online Student Enrollment System 1.0 listofinstructor.php FullName sql injection

Post correlati

CVE-2024-2972 | Floating Chat Widget Plugin up to 3.1.8 on WordPress Setting cross site scripting

CVE-2024-26450 | Piwigo up to 14.1.x Admin Page batch cross site scripting (GHSA-p362-cfpj-q55f)

CVE-2023-50371 | Page Visit Counter Plugin up to 8.0.6 on WordPress cross site scripting

CVE-2023-43971 | ACG-faka 1.1.7 Index.php encode cross site scripting