3 matches found
CVE-2020-36034
SQL Injection vulnerability in oretnom23 School Faculty Scheduling System version 1.0, allows remote attacker to execute arbitrary code, escalate privilieges, and gain sensitive information via crafted payload to id parameter in manageuser.php...
CVE-2020-36034
SQL Injection vulnerability in oretnom23 School Faculty Scheduling System version 1.0, allows remote attacker to execute arbitrary code, escalate privilieges, and gain sensitive information via crafted payload to id parameter in manageuser.php...
CVE-2020-36034
CVE-2020-36034 describes an SQL injection in the oretnom23 School Faculty Scheduling System v1.0, triggered via the id parameter in manage_user.php. The connected sources consistently state that lack of input validation allows an attacker to manipulate SQL statements, potentially enabling remote ...