CVE-2024-54925

A SQL Injection was found in /remove_sent_message.php in kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL commands to get unauthorized database access via the id parameter. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt