Описание
SQL injection vulnerability in /model/delete_record.php in campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the id parameter.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:campcodes:complete_web-based_school_management_system:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 21%
0.00068
Низкий
5.9 Medium
CVSS3
Дефекты
CWE-89
Связанные уязвимости
CVSS3: 5.9
github
почти 2 года назад
SQL injection vulnerability in /model/delete_record.php in campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the id parameter.
EPSS
Процентиль: 21%
0.00068
Низкий
5.9 Medium
CVSS3
Дефекты
CWE-89