A vulnerability was found in lahirudanushka School Management System 1.0.0/1.0.1 and classified as critical. Affected by this issue is some unknown functionality of the file examresults-par.php of the component Exam Results Page. The manipulation of the argument sid leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-269492.
History

Mon, 09 Sep 2024 17:45:00 +0000

Type Values Removed Values Added
First Time appeared Lahirudanushka
Lahirudanushka school Management System
CPEs cpe:2.3:a:lahirudanushka:school_management_system:1.0.1:*:*:*:*:*:*:*
Vendors & Products Lahirudanushka
Lahirudanushka school Management System

cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2024-06-24T02:31:06.972Z

Updated: 2024-08-01T21:33:05.341Z

Reserved: 2024-06-23T18:59:43.191Z

Link: CVE-2024-6279

cve-icon Vulnrichment

Updated: 2024-08-01T21:33:05.341Z

cve-icon NVD

Status : Analyzed

Published: 2024-06-24T03:15:10.573

Modified: 2024-09-09T17:20:45.137

Link: CVE-2024-6279

cve-icon Redhat

No data.