Security Advisory
CVE-2024-28595
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
SQL Injection vulnerability in Employee Management System v1.0 allows attackers to run arbitrary SQL commands via the admin_id parameter in update-admin.php.