2 matches found
CVE-2024-37840
Affected software : Itsourcecode Learning Management System Project In PHP With Source Code v1.0. Vulnerability : SQL injection in processscore.php via the LessonID parameter. Root cause/impact : Allows remote attackers to execute arbitrary SQL commands; CVSS v3.1 score 8.8 (HIGH) with network ac...
CVE-2024-5588
The CVE-2024-5588 entry concerns itsourcecode Learning Management System 1.0. The vulnerability affects the file processscore.php, where manipulating the LessonID parameter enables SQL injection. It is exploitable remotely and the exploit has been disclosed publicly. Multiple sources corroborate ...