CVE-2024-5397 | itsourcecode Online Student Enrollment System 1.0 instructorSubjects.php instructorId sql injection

Inserito da Angelo Barbosa | Mag 26, 2024 | CVE

A vulnerability classified as critical was found in itsourcecode Online Student Enrollment System 1.0. Affected by this vulnerability is an unknown functionality of the file instructorSubjects.php. The manipulation of the argument instructorId leads to sql injection.

This vulnerability is known as CVE-2024-5397. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-5397 | itsourcecode Online Student Enrollment System 1.0 instructorSubjects.php instructorId sql injection

Post correlati

CVE-2024-32327 | Totolink N300RT 2.1.8-B20201030.1539 Firewall Page cross site scripting

CVE-2023-52794 | Linux Kernel up to 6.5.12/6.6.2 thermal out-of-bounds (6a3866dbdcf3/0a8585281b11/fae633cfb729)

CVE-2024-6649 | SourceCodester Employee and Visitor Gate Pass Logging System 1.0 Users.php save_users cross-site request forgery

CVE-2024-30538 | DELUCKS SEO Plugin up to 2.5.4 on WordPress authorization