7.3
CVSSv3

CVE-2024-12940

CVSSv4: 6.9 | CVSSv3: 7.3 | CVSSv2: 7.5 | VMScore: 790 | EPSS: 0.00045 | KEV: Not Included
Published: 26/12/2024 Updated: 26/12/2024

Vulnerability Summary

Critical SQL Injection in 1000 Projects Attendance System 1.0

A critical vulnerability is in 1000 Projects Attendance Tracking Management System 1.0. It affects unknown parts of the file /admin/student_action.php. The issue involves the student_id argument, leading to SQL injection. This attack can happen remotely. The exploit is public and might be used.