CVE-2024-33407
CVE-2024-33407 describes a SQL injection vulnerability in Campcodes Complete Web-Based School Management System v1.0, specifically in the /model/delete_record.php script where an unsafely handled id parameter allows an attacker to execute arbitrary SQL commands. Affected product: Complete Web-Bas...