CVE-2024-25306 | code-projects Simple School Managment System 1.0 School/index.php aname sql injection

Posted by Angelo Barbosa | Feb 9, 2024 | CVE

A vulnerability, which was classified as critical, was found in code-projects Simple School Managment System 1.0. This affects an unknown part of the file School/index.php. The manipulation of the argument aname leads to sql injection.

This vulnerability is uniquely identified as CVE-2024-25306. The attack needs to be initiated within the local network. There is no exploit available.

CVE-2024-25306 | code-projects Simple School Managment System 1.0 School/index.php aname sql injection

Related Posts

CVE-2024-2411 | MasterStudy LMS Plugin up to 3.3.0 on WordPress file inclusion

CVE-2024-38454 | ExpressionEngine up to 7.4.10 cross site scripting

CVE-2023-42831 | Apple macOS Security Privilege Escalation

CVE-2024-3929 | pt-guy Content Views Plugin up to 3.7.0 on WordPress Widget Post Overlay Block cross site scripting