CVE-2024-26517

2024-05-1415:09:08

[email protected]

web.nvd.nist.gov

sql injection

school task manager

remote attacker

sensitive information

crafted payload

delete-task.php

7.1 High

AI Score

Confidence

Low

0 Low

EPSS

Percentile

0.0%

JSON

SQL Injection vulnerability in School Task Manager v.1.0 allows a remote attacker to obtain sensitive information via a crafted payload to the delete-task.php component.

References

github.com/unrealjbr/CVE-2024-26517

www.sourcecodester.com/php/16877/school-task-manager-using-php-source-code.html