CVE-2024-4808 | Kashipara College Management System 1.0 delete_faculty.php id sql injection

Posted by Angelo Barbosa | May 12, 2024 | CVE

A vulnerability, which was classified as critical, was found in Kashipara College Management System 1.0. Affected is an unknown function of the file delete_faculty.php. The manipulation of the argument id leads to sql injection.

This vulnerability is traded as CVE-2024-4808. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-4808 | Kashipara College Management System 1.0 delete_faculty.php id sql injection

Related Posts

CVE-2024-0858 | TheInnovs Innovs HR Plugin up to 1.0.3.4 on WordPress cross-site request forgery

CVE-2024-43340 | Nasirahmed Advanced Form Integration Plugin up to 1.89.4 on WordPress cross-site request forgery

CVE-2024-2241 | Devolutions Workspace up to 2024.1.0 access control (DEVO-2024-0003)

CVE-2024-33383 | Novel-Plus up to 4.3.0 GET Request filePath path traversal