CVE-2024-33802
CVE-2024-33802 describes an SQL injection in Campcodes Complete Web-Based School Management System 1.0. The vulnerability affects /model/get_student_subject.php and is exploitable via the index parameter, allowing an attacker to execute arbitrary SQL commands. Exploitation status is not provided ...