3 matches found
CVE-2022-32379
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/getparentsprofile.php?myindex=...
CVE-2022-32379
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/getparentsprofile.php?myindex=...
CVE-2022-32379
CVE-2022-32379 affects itsourcecode Advanced School Management System v1.0, vulnerable to SQL Injection via /school/model/get_parents_profile.php?my_index=. The root cause is lack of validation for externally supplied SQL statements, enabling an attacker to potentially access or modify sensitive ...