CVE-2024-6275 | lahirudanushka School Management System 1.0.0/1.0.1 Parent Page parent.php update sql injection

Posted by Angelo Barbosa | Jun 23, 2024 | CVE

A vulnerability classified as critical was found in lahirudanushka School Management System 1.0.0/1.0.1. This vulnerability affects unknown code of the file parent.php of the component Parent Page. The manipulation of the argument update leads to sql injection.

This vulnerability was named CVE-2024-6275. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-6275 | lahirudanushka School Management System 1.0.0/1.0.1 Parent Page parent.php update sql injection

Related Posts

CVE-2024-37433 | EverPress Mailster Plugin up to 4.0.9 on WordPress cross site scripting

CVE-2024-32285 | Tenda W30E 1.0.1.25(633) formaddUserName password stack-based overflow

CVE-2024-3678 | Blog2Social Plugin up to 7.4.2 on WordPress information disclosure

CVE-2024-0628 | jeangalea WP RSS Aggregator Plugin 4.23.5 on WordPress RSS Feed Source server-side request forgery