CVE-2024-5239 | Campcodes Complete Web-Based School Management System 1.0 timetable_update_form.php grade sql injection

Posted by Angelo Barbosa | May 22, 2024 | CVE

A vulnerability has been found in Campcodes Complete Web-Based School Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /view/timetable_update_form.php. The manipulation of the argument grade leads to sql injection.

This vulnerability was named CVE-2024-5239. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-5239 | Campcodes Complete Web-Based School Management System 1.0 timetable_update_form.php grade sql injection

Related Posts

CVE-2024-35912 | Linux Kernel up to 5.15.153/6.1.84/6.6.25/6.8.4 iwlwifi kmemdup memory leak

CVE-2023-49772 | Phpbits Creative Studio Genesis Simple Love Plugin up to 2.0 on WordPress deserialization

CVE-2024-31878 | IBM i 7.2/7.3/7.4/7.5 Service Tools Server information exposure (XFDB-287538)

CVE-2024-40913 | Linux Kernel up to 6.1.94/6.6.34/6.9.5 cachefiles copy_to_user reference count