2 matches found
CVE-2022-38832
School Activity Updates with SMS Notification v1.0 is vulnerable to SQL Injection via /activity/admin/modules/department/index.php?view=edit=...
CVE-2022-38832
CVE-2022-38832 affects School Activity Updates with SMS Notification v1.0, with a SQL Injection vulnerability via /activity/admin/modules/department/index.php?view=edit&id=. The root cause is injection through the id parameter. Impact is high (C/H/I/H; CVSS v3.1: 7.2; NETWORK vector). Public expl...