CVE-2024-6278 | lahirudanushka School Management System 1.0.0/1.0.1 Subject Page subject.php update sql injection

Inserito da Angelo Barbosa | Giu 23, 2024 | CVE

A vulnerability has been found in lahirudanushka School Management System 1.0.0/1.0.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file subject.php of the component Subject Page. The manipulation of the argument update leads to sql injection.

This vulnerability is known as CVE-2024-6278. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-6278 | lahirudanushka School Management System 1.0.0/1.0.1 Subject Page subject.php update sql injection

Post correlati

CVE-2024-1495 | GitLab Community Edition/Enterprise Edition up to 16.10.6/16.11.3/17.0.1 File resource consumption (Issue 441807)

CVE-2024-2269 | keerti1924 Online-Book-Store-Website 1.0 /search.php search sql injection

CVE-2024-38401 | Qualcomm Snapdragon Auto up to X75 5G Modem-RF System IOCTL Call use after free

CVE-2024-35717 | A WP Life Media Slider Plugin up to 1.3.9 on WordPress authorization