2 matches found
CVE-2022-39976
School Activity Updates with SMS Notification v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /modules/announcement/index.php?view=edit&id=...
CVE-2022-39976
CVE-2022-39976 pertains to the product “School Activity Updates with SMS Notification v1.0.” Multiple connected records confirm a concrete vulnerability: a SQL injection via the id parameter in the endpoint /modules/announcement/index.php?view=edit&id=, enabling an attacker to manipulate the data...