CVE-2024-12490 | code-projects Online Class and Exam Scheduling System 1.0 /pages/teacher_save.php salut sql injection

Posted by Angelo Barbosa | Dec 11, 2024 | CVE

A vulnerability was found in code-projects Online Class and Exam Scheduling System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /pages/teacher_save.php. The manipulation of the argument salut leads to sql injection.

This vulnerability was named CVE-2024-12490. The attack can be initiated remotely. Furthermore, there is an exploit available.

Other parameters might be affected as well.

CVE-2024-12490 | code-projects Online Class and Exam Scheduling System 1.0 /pages/teacher_save.php salut sql injection

Related Posts

CVE-2024-22230 | Dell Unity up to 5.3 cross site scripting (dsa-2024-042)

CVE-2024-35592 | Box-IM 2.0 PDF File cross site scripting

CVE-2023-52446 | Linux Kernel up to 6.1/6.6.13/6.7.1 BPF /test_progs btf_put use after free (59e5791f59dd/d048dced8ea5/f9ff6ef1c73c)

CVE-2023-50290 | Apache Solr up to 9.2.x Metrics API information disclosure