CVE-2024-25312 — SQL Injection in Simple School Management System

Severity

8.8HIGHNVD

EPSS

0.2%

top 63.44%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedFeb 9

Description

Code-projects Simple School Managment System 1.0 allows SQL Injection via the 'id' parameter at "School/sub_delete.php?id=5."

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

GHSA

GHSA-frf6-468r-3v33: Code-projects Simple School Managment System 1↗2024-02-09

▶

CVEList

CVE-2024-25312: Code-projects Simple School Managment System 1↗2024-02-09

▶