4 matches found
CVE-2024-28816
Student Information Chatbot a0196ab allows SQL injection via the username to the login function in index.php...
CVE-2024-28816
Student Information Chatbot a0196ab allows SQL injection via the username to the login function in index.php...
Student Information Chatbot SQL Injection Vulnerability
Student Information Chatbot is a cloud-based student information chatbot system by the individual developer Aarav Raj Singh. A SQL injection vulnerability exists in Student Information Chatbot version a0196ab, which originates from allowing SQL to be injected into the login function in index.php...
CVE-2024-28816
The CVE identifies a SQL injection in the Student Information Chatbot a0196ab, exposed via the login username parameter in index.php. The underlying flaw is unsanitized user input passed to a SQL query in the login function, enabling potential unauthorized access or data exposure. Exploitation st...