SQL Injection Vulnerability in 1000 Projects Attendance Tracking Management System
CVE-2024-12787
What is CVE-2024-12787?
CVE-2024-12787 is a critical SQL injection vulnerability discovered in version 1.0 of the 1000 Projects Attendance Tracking Management System. The vulnerability resides in an unspecified functionality within the file '/student/check_student_login.php'. By manipulating the 'student_emailid' argument, an attacker can perform unauthorized SQL queries, potentially compromising the underlying database. This flaw can be exploited remotely, leading to severe data leaks or unauthorized access to sensitive information. The exploit has been publicly disclosed, emphasizing the urgent need for users of this platform to implement protective measures.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
Attendance Tracking Management System 1.0
References
CVSS V3.1
Timeline
- ๐พ
Exploit known to exist
Vulnerability published
Vulnerability Reserved
