4 matches found
CVE-2024-7219
CVE-2024-7219 affects SourceCodester/Campcodes School Log Management System 1.0. The vulnerable element is the file /admin/ajax.php?action=login, where manipulating the username parameter triggers an SQL injection. The vulnerability can be exploited remotely, and multiple sources report that the ...
CVE-2024-7220
CVE-2024-7220 affects SourceCodester/Campcodes School Log Management System 1.0. An SQL injection vulnerability exists in the /admin/print_barcode.php page where manipulation of the tbl argument enables remote exploitation. Multiple sources confirm the vulnerability, with exploit public and impac...
CVE-2024-7218
CVE-2024-7218 affects SourceCodester Campcodes School Log Management System 1.0. The vulnerability is in the /admin/ajax.php?action=save_student endpoint; manipulating the name parameter can trigger cross-site scripting. The attack is remote, and exploits have been published. Related advisories (...
CVE-2024-7221
SourceCodester Campcodes School Log Management System 1.0 contains a SQL injection flaw in /admin/manage_user.php caused by unsafely handling the id parameter. The vulnerability can be exploited remotely and has had a public exploit disclosed. Documents do not provide a remediation or patch versi...