SQL Injection Vulnerability in Learning Management System Project
CVE-2024-37840

Currently unrated

Key Information:

Vendor: Itsourcecode
Status: Learning Management System
Vendor: CVE Published:; 17 June 2024

🔔 Create Itsourcecode Vulnerability Alert

What is CVE-2024-37840?

SQL injection vulnerability in processscore.php in Itsourcecode Learning Management System Project In PHP With Source Code v1.0 allows remote attackers to execute arbitrary SQL commands via the LessonID parameter.

References

https://github.com/ganzhi-qcy/cve/issues/4

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 17, 2024
Vulnerability Reserved
Jun 10, 2024