SQL Injection Vulnerability in Kashipara College Management System
CVE-2024-4808
8.8HIGH
What is CVE-2024-4808?
A vulnerability has been identified in the Kashipara College Management System 1.0 that allows for SQL injection through the 'delete_faculty.php' file. The vulnerability arises from improper handling of the 'id' argument, which can be manipulated to execute unauthorized SQL commands. This flaw is exploitable remotely, posing significant risks to data integrity and confidentiality. As the details are publicly disclosed, it invites potential exploitation, necessitating immediate attention and remediation to safeguard systems.