CVE-2024-10425 - Project Worlds Student Project Allocation System SQL Injection Vulnerability

4 weeks ago 12
ARTICLE AD BOX
CVE ID : CVE-2024-10425
Published : Oct. 27, 2024, 7:15 p.m. | 24 minutes ago
Description : A vulnerability was found in Project Worlds Student Project Allocation System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /student/project_selection/move_up_project.php of the component Project Selection Page. The manipulation of the argument up leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article