Security Advisory

CVE-2023-5008

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-12-07 23:16:52

Last updated 2024-10-09 13:57:21

Assigner Fluid Attacks

State PUBLISHED

Description

Student Information System v1.0 is vulnerable to an unauthenticated SQL Injection vulnerability on the regno parameter of index.php page, allowing an external attacker to dump all the contents of the database contents and bypass the login control.

← Browse all CVEs View on cve.org ↗