CVE-2024-35355 | Diño Physics School Assistant 2.3 Master.php id sql injection

Posted by Angelo Barbosa | May 30, 2024 | CVE

A vulnerability classified as critical was found in Diño Physics School Assistant 2.3. Affected by this vulnerability is an unknown functionality of the file /classes/Master.php?f=delete_category. The manipulation of the argument id leads to sql injection.

This vulnerability is known as CVE-2024-35355. The attack can be launched remotely. There is no exploit available.

CVE-2024-35355 | Diño Physics School Assistant 2.3 Master.php id sql injection

Related Posts

CVE-2023-7202 | Fatal Error Notify Plugin up to 1.5.2 on WordPress Test Error authorization

CVE-2023-49004 | D-Link DIR-850L B1_FW223WWb01 en Privilege Escalation

CVE-2024-24865 | Noah Kagan Scroll Triggered Box Plugin up to 2.3 on WordPress cross site scripting

CVE-2023-28546 | Qualcomm 4 Gen 1 Mobile Platform SPS Application memory corruption