CVE-2024-12489 | code-projects Online Class and Exam Scheduling System 1.0 /pages/term.php id sql injection

Posted by Angelo Barbosa | Dec 11, 2024 | CVE

A vulnerability was found in code-projects Online Class and Exam Scheduling System 1.0. It has been classified as critical. This affects an unknown part of the file /pages/term.php. The manipulation of the argument id leads to sql injection.

This vulnerability is uniquely identified as CVE-2024-12489. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-12489 | code-projects Online Class and Exam Scheduling System 1.0 /pages/term.php id sql injection

Related Posts

CVE-2024-23669 | Fortinet FortiWebManager up to 6.0.2/6.2.4/6.3.0/7.0.4/7.2.0 HTTP Request Handler/CLI improper authorization (FG-IR-23-222)

CVE-2023-50720 | XWiki Platform Email Address information disclosure (GHSA-2grh-gr37-2283)

CVE-2024-47388 | SliceWP Plugin up to 1.1.18 on WordPress cross site scripting

CVE-2024-43747 | Adobe Experience Manager up to 6.5.21 Form Field cross site scripting (apsb24-69)