CVE-2024-30985

Publication date

2024-04-17 00:00:00

Family

mitre

State

PUBLISHED

Description

SQL Injection vulnerability in "B/W Dates Reports" page in phpgurukul Client Management System using PHP & MySQL 1.1 allows attacker to execute arbitrary SQL commands via "todate" and "fromdate" parameters.