CVE-2024-5237 | Campcodes Complete Web-Based School Management System 1.0 timetable_grade_wise.php grade sql injection

Posted by Angelo Barbosa | May 22, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Campcodes Complete Web-Based School Management System 1.0. Affected by this issue is some unknown functionality of the file /view/timetable_grade_wise.php. The manipulation of the argument grade leads to sql injection.

This vulnerability is handled as CVE-2024-5237. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-5237 | Campcodes Complete Web-Based School Management System 1.0 timetable_grade_wise.php grade sql injection

Related Posts

CVE-2023-30014 | SourceCodester Judging Management System 1.0 sub_event_stat_update.php sub_event_stat_update sub_event_id sql injection

CVE-2024-22356 | IBM App Connect Enterprise/Integration Bus up to 11.0.0.23/12.0.9.0 on z/OS neutralization for logs (XFDB-280893)

CVE-2024-8130 | D-Link DNS-1550-04 up to 20240814 HTTP POST Request /cgi-bin/s3.cgi cgi_s3 f_a_key command injection (SAP10383)

CVE-2022-48615 | Huawei AR6000 V300R019C10SPC300 access control