3 matches found
CVE-2024-35357
A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=deleteitem. Manipulating the argument id can result in SQL injection...
CVE-2024-35357
A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=deleteitem. Manipulating the argument id can result in SQL injection...
CVE-2024-35357
Diño Physics School Assistant version 2.3 contains a SQL injection vulnerability in the delete_item path. The issue arises from unvalidated input passed through /classes/Master.php?f=delete_item with the id parameter, enabling SQL injection (public details confirm CVE-2024-35357 with a base score...