CVE-2024-9658 | dasinfomedia School Management System Plugin up to 93.0.0 on WordPress Email Address mj_smgt_update_user/mj_smgt_add_admission authentication bypass

Inserito da Angelo Barbosa | Mar 7, 2025 | CVE

A vulnerability was found in dasinfomedia School Management System Plugin up to 93.0.0 on WordPress and classified as critical. This issue affects the function mj_smgt_update_user/mj_smgt_add_admission of the component Email Address Handler. The manipulation leads to authentication bypass using alternate channel.

The identification of this vulnerability is CVE-2024-9658. The attack may be initiated remotely. There is no exploit available.

CVE-2024-9658 | dasinfomedia School Management System Plugin up to 93.0.0 on WordPress Email Address mj_smgt_update_user/mj_smgt_add_admission authentication bypass

Post correlati

CVE-2024-32737 | CyberPower PowerPanel Enterprise up to 2.8.2 MCUDBHelper query_contract_result sql injection

CVE-2022-48620 | uev up to 2.4.0 epoll_wait maxevents buffer overflow (Issue 27)

CVE-2024-57637 | openlink virtuoso-opensource 7.2.11 SQL dfe_unit_gb_dependant denial of service (Issue 1192)

CVE-2025-1077 | IBL Software Engineering Visual Weather Product Delivery Service deserialization (isec-2024-001)