CVE-2023-26569

Unauthenticated SQL injection in the StudentPopupDetails_Timetable method in IDAttend’s IDWeb application 3.1.052 and earlier allows extraction or modification of all data by unauthenticated attackers. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt