CVE-2024-12485 | code-projects Online Class and Exam Scheduling System 1.0 /pages/department.php id sql injection

Posted by Angelo Barbosa | Dec 11, 2024 | CVE

A vulnerability, which was classified as critical, has been found in code-projects Online Class and Exam Scheduling System 1.0. This issue affects some unknown processing of the file /pages/department.php. The manipulation of the argument id leads to sql injection.

The identification of this vulnerability is CVE-2024-12485. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-12485 | code-projects Online Class and Exam Scheduling System 1.0 /pages/department.php id sql injection

Related Posts

CVE-2024-47257 | AXIS Q6128-E PTZ Network Camera/P1428-E Network Camera 6.50 Ethernet Frame improper validation of specified quantity in input

CVE-2024-28825 | Checkmk up to 2.0.0p39/2.1.0p42/2.2.0p25/2.3.0b4 excessive authentication

CVE-2024-24294 | blackprint engine 0.9.0 engine.min.js _utils.setDeepProperty prototype pollution

CVE-2024-10732 | Tongda OA 2017 up to 11.10 index.php query_str sql injection