5 matches found
CVE-2022-32372
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/getsubject.php?id=...
CVE-2022-32372
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/getsubject.php?id=...
CVE-2022-32372
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/getsubject.php?id=...
CVE-2022-32372
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/getsubject.php?id=...
CVE-2022-32372
Affected software : itsourcecode Advanced School Management System v1.0 (open source PHP/MySQL-based). Vulnerability : SQL Injection via /school/model/get_subject.php?id= (unsafely handling user input in a SQL query). Root cause : input parameter not sanitized/filtered before database query. Impa...