CVE-2024-33970 | Janobe School Attendance Monitoring System 1.0 controller.php studid sql injection

Posted by Angelo Barbosa | Aug 6, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Janobe School Attendance Monitoring System and School Event Management System 1.0. This issue affects some unknown processing of the file /candidate/controller.php. The manipulation of the argument studid leads to sql injection.

The identification of this vulnerability is CVE-2024-33970. The attack may be initiated remotely. There is no exploit available.

CVE-2024-33970 | Janobe School Attendance Monitoring System 1.0 controller.php studid sql injection

Related Posts

CVE-2024-21920 | Rockwell Automation Arena Simulation up to 16.20.02 out-of-bounds

CVE-2024-22559 | LightCMS 2.0 Content Management Articles cross site scripting (Issue 34)

CVE-2024-47158 | NEUMANNLTD N-LINE up to 2.0.6 code injection

CVE-2024-33579 | Lenovo Baiying up to 1.x uncontrolled search path