A vulnerability classified as critical has been found in itsourcecode University Management System 1.0. This affects an unknown part of the file functions.php of the component Login. The manipulation of the argument username leads to sql injection.
This vulnerability is uniquely identified as CVE-2024-6957. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.