Agro School Management System
CVE-2024-25251
HIGH
Severity by source
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Primary rating from Vendor (mitre) · only source for this CVE.
CVSS VectorVendor: mitre
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
1DescriptionCVE.org
code-projects Agro-School Management System 1.0 is suffers from Incorrect Access Control.
AnalysisAI
code-projects Agro-School Management System 1.0 is suffers from Incorrect Access Control. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.
Technical ContextAI
This vulnerability is classified under CWE-284. code-projects Agro-School Management System 1.0 is suffers from Incorrect Access Control. Affected products include: Carmelo Agro-School Management System.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
A vulnerability classified as critical has been found in code-projects Agro-School Management System 1.0. Rated critical
A vulnerability was found in code-projects Agro-School Management System 1.0. Rated critical severity (CVSS 9.8), this v
A vulnerability was found in code-projects Agro-School Management System 1.0 and classified as critical.php of the compo
A vulnerability, which was classified as critical, has been found in code-projects Agro-School Management System 1.0. Ra
A vulnerability has been found in code-projects Agro-School Management System 1.0 and classified as critical. Rated high
SQL Injection vulnerability in code-projects Agro-School Management System 1.0 allows attackers to run arbitrary code vi
A vulnerability has been found in code-projects Agro-School Management System 1.0 and classified as problematic. Rated m
Same weakness CWE-284 – Improper Access Control
View allSame technique Authentication Bypass
View allShare
External POC / Exploit Code
Leaving vuln.today