CVE-2024-6275 | lahirudanushka School Management System 1.0.0/1.0.1 Parent Page parent.php update sql injection

Posted by Angelo Barbosa | Jun 23, 2024 | CVE

A vulnerability classified as critical was found in lahirudanushka School Management System 1.0.0/1.0.1. This vulnerability affects unknown code of the file parent.php of the component Parent Page. The manipulation of the argument update leads to sql injection.

This vulnerability was named CVE-2024-6275. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-6275 | lahirudanushka School Management System 1.0.0/1.0.1 Parent Page parent.php update sql injection

Related Posts

CVE-2024-2314 | IOVisor BPF Compiler Collection on Linux Kernel Header kbuild_helper.cc KBuildHelper::get_flags temp file

CVE-2024-37840 | itsourcecode Learning Management System 1.0 processscore.php LessonID sql injection

CVE-2023-6908 | DFIRKuiper 2.3.4 TAR Archive case_management.py unzip_file dst_path path traversal (ID 106)

CVE-2023-6950 | DJI Mini 3 Pro prior 01.00.1200 FTP SIZE Command denial of service