Back

CVE-2024-35357

May 30, 2024, 6:19 p.m.

Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.

Products

Diño Physics School Assistant

  • 2.3

Source

cve@mitre.org

Tags

cve@mitre.org
2024-05-30
CVE-2024-35357

CVE-2024-35357 details

Published : May 30, 2024, 4:15 p.m.
Last Modified : May 30, 2024, 6:19 p.m.

Description

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=delete_item. Manipulating the argument id can result in SQL injection.

CVSS Score

1 2 3 4 5 6 7 8 9 10

Weakness

Weakness Name Description

References

URL Source
https://vuln.pentester.stream/pentester-vulnerability-research/post/2298672/vuln12-error-based-sql-injection cve@mitre.org
This website uses the NVD API, but is not approved or certified by it.