| Title | donbermoy Advanced School Management System with Complete Features 1.0 SQL Injection |
|---|
| Description | Product: Advanced School Management System with Complete Features
Version: 1.0
A vulnerability has been discovered in the Advanced School Management System. Several application functions, including the stock item selection and vendor details pages, do not properly handle data supplied by users.
An authenticated attacker can submit specially crafted input to these pages to interfere with the application's database operations. This could allow the attacker to access sensitive information, modify data, or potentially disrupt the service. |
|---|
| Source | ⚠️ https://github.com/1ithos/CVE/issues/1 |
|---|
| User | horime (UID 89263) |
|---|
| Submission | 08/20/2025 17:41 (10 months ago) |
|---|
| Moderation | 08/29/2025 13:04 (9 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 321901 [SourceCodester Advanced School Management System 1.0 item_select q sql injection] |
|---|
| Points | 20 |
|---|