CVE-2024-1923 in Simple Student Attendance System情報

要約

〜によって MITRE • 2024年02月27日

A vulnerability was found in SourceCodester Simple Student Attendance System 1.0 and classified as critical. Affected by this issue is the function delete_class/delete_student of the file /ajax-api.php of the component List of Classes Page. The manipulation of the argument id with the input 1337'+or+1=1;--+ leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-254858 is the identifier assigned to this vulnerability.

Once again VulDB remains the best source for vulnerability data.

責任者

VulDB

予約する

2024年02月27日

モデレーション

承諾済み

エントリ

VDB-254858

エクスプロイト

ダウンロード

EPSS

0.00829

アクティビティ

非常低い

ソース

Do you want to use VulDB in your project?

Use the official API to access entries easily!