Agro School Management System
CVE-2024-25250
CRITICAL
Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Primary rating from Vendor (mitre) · only source for this CVE.
CVSS VectorVendor: mitre
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
1DescriptionCVE.org
SQL Injection vulnerability in code-projects Agro-School Management System 1.0 allows attackers to run arbitrary code via the Login page.
AnalysisAI
SQL Injection vulnerability in code-projects Agro-School Management System 1.0 allows attackers to run arbitrary code via the Login page. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Technical ContextAI
This vulnerability is classified as SQL Injection (CWE-89), which allows attackers to execute arbitrary SQL commands against the database. SQL Injection vulnerability in code-projects Agro-School Management System 1.0 allows attackers to run arbitrary code via the Login page. Affected products include: Carmelo Agro-School Management System.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Use parameterized queries/prepared statements. Never concatenate user input into SQL. Apply least-privilege database permissions.
A vulnerability classified as critical has been found in code-projects Agro-School Management System 1.0. Rated critical
A vulnerability was found in code-projects Agro-School Management System 1.0. Rated critical severity (CVSS 9.8), this v
A vulnerability was found in code-projects Agro-School Management System 1.0 and classified as critical.php of the compo
code-projects Agro-School Management System 1.0 is suffers from Incorrect Access Control. Rated high severity (CVSS 8.8)
A vulnerability, which was classified as critical, has been found in code-projects Agro-School Management System 1.0. Ra
A vulnerability has been found in code-projects Agro-School Management System 1.0 and classified as critical. Rated high
A vulnerability has been found in code-projects Agro-School Management System 1.0 and classified as problematic. Rated m
Same weakness CWE-89 – SQL Injection
View allShare
External POC / Exploit Code
Leaving vuln.today