CVE-2024-25306 | code-projects Simple School Managment System 1.0 School/index.php aname sql injection

Posted by Angelo Barbosa | Feb 9, 2024 | CVE

A vulnerability, which was classified as critical, was found in code-projects Simple School Managment System 1.0. This affects an unknown part of the file School/index.php. The manipulation of the argument aname leads to sql injection.

This vulnerability is uniquely identified as CVE-2024-25306. The attack needs to be initiated within the local network. There is no exploit available.

CVE-2024-25306 | code-projects Simple School Managment System 1.0 School/index.php aname sql injection

Related Posts

CVE-2024-32745 | WonderCMS 3.4.3 Current Page Module PAGE DESCRIPTION cross site scripting

CVE-2024-4087 | Royal Elementor Addons and Templates Plugin up to 1.3.975 on WordPress Top Widget cross site scripting

CVE-2024-28747 | ifm Smart PLC AC14xx/Smart PLC AC4xxS up to 4.3.17 hard-coded credentials (VDE-2024-012)

CVE-2024-31145 | Xen x86 IOMMU Identity Mapping memory corruption