A vulnerability classified as critical has been found in code-projects Simple School Managment System 1.0. Affected is an unknown function of the file School/index.php. The manipulation of the argument username/password leads to improper authentication.
This vulnerability is traded as CVE-2024-25305. The attack can only be done within the local network. There is no exploit available.