Student Information System v1.0 is vulnerable to an unauthenticated SQL Injection vulnerability on the 'regno' parameter of index.php page, allowing an external attacker to dump all the contents of the database contents and bypass the login control.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Fluid Attacks
Published: 2023-12-07T23:16:52.700Z
Updated: 2024-08-02T07:44:53.786Z
Reserved: 2023-09-15T22:26:16.954Z
Link: CVE-2023-5008
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-12-08T00:15:07.597
Modified: 2023-12-11T17:47:39.170
Link: CVE-2023-5008
Redhat
No data.