6 matches found
CVE-2024-33402
A SQL injection vulnerability in /model/approvepettycash.php in campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the id parameter...
PT-2024-25234 · Unknown · Campcodes Complete Web-Based School Management System
Name of the Vulnerable Software and Affected Versions: campcodes Complete Web-Based School Management System version 1.0 Description: A SQL injection issue allows an attacker to execute arbitrary SQL commands via the id parameter in the "/model/approve petty cash.php" API endpoint. Recommendation...
Campcodes Complete Web-Based School Management System 安全漏洞
Campcodes Complete Web-Based School Management System is a web-based school management system from Campcodes, Inc. A security vulnerability exists in version 1.0 of the Complete Web-Based School Management System that stems from an SQL injection vulnerability in /model/approvepettycash.php...
CVE-2024-4720
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /model/approvepettycash.php. The manipulation of the argument adminindex leads to cross site scripting. The...
Campcodes Complete Web-Based School Management System 跨站脚本漏洞
Campcodes Complete Web-Based School Management System is a Web-based school management system from Campcodes, Inc. A cross-site scripting vulnerability exists in version 1.0 of the Campcodes Complete Web-Based School Management System, which originates from a cross-site scripting vulnerability in...
CVE-2024-4720
CVE-2024-4720 affects Campcodes Complete Web-Based School Management System 1.0. The vulnerable component is the script at /model/approve_petty_cash.php, where manipulating the admin_index parameter enables cross-site scripting (XSS). Attacks may be launched remotely, and public exploits are repo...