Security Advisory

CVE-2024-27685

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-06-25 00:00:00

Last updated 2025-06-25 15:09:13

Assigner mitre

State PUBLISHED

Description

SQL Injection vulnerability in Student Record system Using PHP and MySQL v.3.20 allows a remote attacker to obtain sensitive information via a crafted payload to the $cshortname, $cfullname, and $cdate variables.

← Browse all CVEs View on cve.org ↗