CVE-2024-27709

Published: 2024-07-05T17:15Z

Last Modified: 2024-11-21T09:04Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

SQL Injection vulnerability in Eskooly Web Product v.3.0 allows a remote attacker to execute arbitrary code via the searchby parameter of the allstudents.php component and the id parameter of the requestmanager.php component. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt