A SQL injection vulnerability in "/admin/quizquestion.php" in Kashipara Online Exam System v1.0 allows remote attackers to execute arbitrary SQL commands via the "eid" parameter.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Kashipara |
|
No data.
No data.
No data.
References
History
Fri, 09 Aug 2024 19:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Kashipara
Kashipara online Exam System |
|
| Weaknesses | CWE-89 | |
| CPEs | cpe:2.3:a:kashipara:online_exam_system:1.0:*:*:*:*:*:*:* | |
| Vendors & Products |
Kashipara
Kashipara online Exam System |
|
| Metrics |
cvssV3_1
|
Fri, 09 Aug 2024 16:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A SQL injection vulnerability in "/admin/quizquestion.php" in Kashipara Online Exam System v1.0 allows remote attackers to execute arbitrary SQL commands via the "eid" parameter. | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-09T18:29:37.891Z
Reserved: 2024-07-05T00:00:00
Link: CVE-2024-40479
Vulnrichment
Updated: 2024-08-09T18:28:28.140Z
NVD
Status : Awaiting Analysis
Published: 2024-08-12T13:38:28.913
Modified: 2024-08-13T01:13:47.860
Link: CVE-2024-40479
Redhat
No data.
OpenCVE Enrichment
No data.