CVE-2024-33799
Severity CVSS v4.0:
Pending analysis
Type:
CWE-89
SQL Injection
Publication date:
28/05/2024
Last modified:
22/08/2024
Description
A SQL injection vulnerability in /model/get_teacher.php in campcodes Complete Web-Based School Management System 1.0 allows an attacker to execute arbitrary SQL commands via the id parameter.
Impact
Base Score 3.x
9.80
Severity 3.x
CRITICAL