9.8
CVSSv3

CVE-2024-12898

CVSSv4: 5.3 | CVSSv3: 9.8 | CVSSv2: 6.5 | VMScore: 630 | EPSS: 0.00063 | KEV: Not Included
Published: 23/12/2024 Updated: 08/01/2025

Vulnerability Summary

Critical SQL Injection Vulnerability in Attendance Tracking System 1.0

A critical vulnerability exists in 1000 Projects Attendance Tracking Management System 1.0. It affects an unknown part of the file /admin/faculty_action.php. The issue is with the argument faculty_course_id, which can lead to SQL injection. This attack can be carried out from a remote location. Details of the exploit are public and might be used by others. Additional parameters could also be affected.

Vulnerable Product Search on Vulmon Subscribe to Product

1000projects attendance tracking management system 1.0