code-projects Agro-School Management System index.php sql injection
CVE-2023-3062
9.8CRITICAL
What is CVE-2023-3062?
A security flaw exists in the Agro-School Management System version 1.0 due to improper input validation in the file index.php. This vulnerability allows attackers to exploit a weakness in the password argument, potentially leading to unauthorized access to the database via SQL injection. The remote exploitation capability of this vulnerability heightens the risk, as attackers can execute malicious SQL queries without the need for direct access to the system.
Affected Version(s)
Agro-School Management System 1.0