CVE-2024-13037 – “1000 Projects Attendance Tracking Management System SQL Injection Vulnerability”

12月 30, 2024
5:16 am

CVE ID : CVE-2024-13037

Published : Dec. 30, 2024, 4:15 a.m. | 1 hour, 1 minute ago

Description : A vulnerability was found in 1000 Projects Attendance Tracking Management System 1.0. It has been classified as critical. Affected is the function attendance_report of the file /admin/report.php. The manipulation of the argument course_id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-13037 – “1000 Projects Attendance Tracking Management System SQL Injection Vulnerability”

Elvescore.io

Recent Posts

CVE-2024-11184 – WordPress wp-enable-svg SVG Injection Vulnerability

CVE-2024-11357 – Goodlayers Core WordPress Stored Cross-Site Scripting Vulnerability

CVE-2024-12595 – WordPress AHAthat Plugin Reflected Cross-Site Scripting

CVE-2002-20002 – EasyTCP Weak Random Number Generation in Crypto Key Generation

CVE-2024-56830 – Apache Net::EasyTCP Weak Random Number Generating

CVE-2024-56829 – Huang Yaoshi Pharmaceutical File Upload Vulnerability (Arbitrary File Write)

CVE-2024-13037 – “1000 Projects Attendance Tracking Management System SQL Injection Vulnerability”

CVE-2024-13037 – “1000 Projects Attendance Tracking Management System SQL Injection Vulnerability”