CVE-2024-25308 | code-projects Simple School Managment System 1.0 School/teacher_login.php name sql injection

Posted by Angelo Barbosa | Feb 9, 2024 | CVE

A vulnerability classified as critical was found in code-projects Simple School Managment System 1.0. Affected by this vulnerability is an unknown functionality of the file School/teacher_login.php. The manipulation of the argument name leads to sql injection.

This vulnerability is known as CVE-2024-25308. The attack can only be initiated within the local network. There is no exploit available.

CVE-2024-25308 | code-projects Simple School Managment System 1.0 School/teacher_login.php name sql injection

Related Posts

CVE-2024-1467 | Starter Templates Plugin up to 4.1.6 on WordPress server-side request forgery

CVE-2024-8478 | Affiliate Super Assistent Plugin up to 1.5.3 on WordPress Shortcode Remote Code Execution

CVE-2022-41678 | Apache ActiveMQ up to 5.16.5/5.17.3 deserialization

CVE-2024-23618 | Arris SURFboard SBG6950AC2 9.1.103aa23 missing authentication